The Dark Overlord

From Wikispooks
Jump to navigation Jump to search

Group.png The Dark Overlord  
(Hacking group)Rdf-entity.pngRdf-icon.png

The Dark Overlord (TDOL and also known as the Professional Adversarial Threat Group) is an international hacker organization which garners significant publicity through cybercrime database penetration of high profile targets and subsequent public demands for ransom to prevent the release of potentially embarrassing documents.[1]

TDOL gained significant international exposure with the leak of unreleased episodes of the Netflix series “Orange is the New Black.”[2] On December 31, 2018, TDOL announced the Lloyds of London and Silverstein Properties "9/11 Papers" hack on Twitter, with thousands of incriminating documents[3][4][5]to be released in stages unless US$2,000.000 in bitcoin were paid to 192ZobzfZxAkacLGmg9oY4M9y8MVTPxh7U.[6]

9/11 Leaks

TDOL tweet 911.png

The documents were posted on 31 December 2018 as a single large encrypted file of around 10GB.[Where?] "The Dark Overlord initially threatened to release the 10GB of data unless the hacked firms paid an unspecified bitcoin ransom. However, on Wednesday, the group announced a "tiered compensation plan" in which the public could make bitcoin payments to unlock the troves of documents."[7] At least 3 of the keys group have subsequently been released.[8]


TDOL was banned from social media platforms including Twitter,[9] Reddit, Pastebin and Steemit.[10] Platforms unrelated to TDOL such as also had their social media accounts eliminated or followers deleted for serving as mirrors of TDOL hacked documents.[11] As of November 2019, was still giving access to those posts Steemit blocked its users to see.[12]

The leaks

4 January 2019

Leak 0: Preview_Documents

“Our Official Bitcoin Wallet Address: 192ZobzfZxAkacLGmg9oY4M9y8MVTPxh7U

As the world is aware, we released our first decryption key for the 'Preview_Documents.container' Veracrypt container that contained a small sample of documents to continue to verify the authenticity of our claims. The decryption key for this container is: *CZ4=I{YZ456zGecgg9/cCz|zNP5bZ,nCvJqDZKrq@v?O5V$FezCNs26CD;e:%N^

There's five layers to go. Layer 1, 2, 3, 4, and fine finally Layer 5. Each layer contains more secrets, more damaging materials, more SSI, more SCI, more government investigation materials, and generally just more truth. Consider our motivations (money, specifically Bitcoin), we're not inclined to leak the juiciest items until we're paid in full. However, in the interest of public awareness and transparency, we're officially announcing our tiered compensation plan. Below, we'll announce the required cost to release each layer of damaging documents that are filled with new truths, never before seen. There's only one way we can be paid: Bitcoin. There's two ways for you to pay us: you can acquire BTC on your own and send it to our address and build the pool directly, or you can bundle into groups and communities and create GoFundMe pages that collect large amounts of fiat that can then be converted, by the community leader, and used to purchase BTC to throw into our wallet address. As more BTC is generated, more information will be released. We're also going to introduce checkpoints between each major funding goal that will result in some small samples to be released from the next layer before the entire layer is allowed to be decrypted. Our compensation structure follows:

Preview_Documents.container - Free, we released the key to prove authenticity of our claims.

Checkpoint 01 - 250 USD of BTC = 25 'random' documents from Layer 1.
Checkpoint 02 - 500 USD of BTC = 25 'random' documents from Layer 1.
Checkpoint 03 - 750 USD of BTC = 40 'random' documents from Layer 1.
Checkpoint 04 - 1.000 USD of BTC = 50 'random' documents from Layer 1.

Layer_1.container - 5.000 USD of BTC (All Layer 1 Documents)

Checkpoint 05 - 6.500 USD of BTC = 50 'random' documents from Layer 2.
Checkpoint 06 - 8.500 USD of BTC = 50 'random' documents from Layer 2.
Checkpoint 07 - 12.000 USD of BTC = 50 'random' documents from Layer 2.
Checkpoint 08 - 25.000 USD of BTC = 50 'random' documents from Layer 2.

Layer_2.container - 50.000 USD of BTC (All Layer 2 Documents)

Checkpoint 09 - 65.000 USD of BTC = 100 'random' documents from Layer 3.
Checkpoint 10 - 85.000 USD of BTC = 100 'random' documents from Layer 3.

Layer_3.container - 100.000 USD of BTC (All Layer 2 Documents)

Checkpoint 11 - 250.000 USD of BTC = 250 'random' documents from Layer 4.
Checkpoint 12 - 500.000 USD of BTC = 250 'random' documents from Layer 4.

Layer_4.container - 1.000.000 USD of BTC (All Layer 4 Documents)

Checkpoint 13 - 1.500.000 USD of BTC = 5 'random' documents from Layer 5.

Layer_5.container - 2.000.000 USD of BTC (All Layer 5 Documents)

To clarify this structure, if we reach 10.000 USD of BTC, we'll release the 'Layer_1.container' decryption key to the public via our official Twitter. If another 90.000 USD of BTC is donated (for a total of 100.000 USD of BTC at this point), we'll release the decryption key for 'Layer_2.container' via our official Twitter, and so on. The compensation is compounding structure, with the totals to be calculated from the deposits into the BTC address at the time of their deposits.

We have a long history of trustworthy negotiations and resolutions with many clients of ours. It's our goal to be financially compensated before we initiate any brazen actions. You're motivated by your passions for the truth, and we're motivated by our passion and love for Bitcoin. Let's come to together and meet in the middle.

Our Official Bitcoin Wallet Address: 192ZobzfZxAkacLGmg9oY4M9y8MVTPxh7U

We've publicly released the archive of the 911 World Trade Center Litigation documents publicly. There's thousands of files included in the archive. Everyone can freely have a copy of the archive and we would encourage it. However, the archive is completely encrypted using a very strong AES encryption and very strong master keys that will prevent anyone from decrypting the veracrypt containers until we publicly release the keys for each layer. The archive is split between five layers. Layer 1 being the most modest, and Layer 5 containing the most heavy hitting and impactful documents, with Layer 2, Layer 3, and Layer 4 containing ever-increasingly scandalous materials. We encourage everyone to obtain a copy of all five archives. As time goes on, we may publicly release keys for each of these containers if our requests from the involved companies are not met. The link to download the 10 GB archive is below. Stay tuned for the possible release of more decryption keys. We may release these keys on our new official Twitter page (@tdo_h4ck3rs) and/or on the dark web hacker forum 'KickAss'.

Below is the link to the torrent file to download the archive. The SHA1 Hash is calculated from ''.

SHA1 HASH: F4C18CF980648E9FBDAC55952F5F3485DBBA95F9

And finally, a message to the companies directly involved to include the airlines, government agencies, the dozens of solicitor firms, the insurers, and the many others, this is a message directly to you: pay the fuck up, or we're going to bury you with this. If you continue to fail us, we'll escalate these releases by releasing the keys, each time a Layer is opened, a new wave of liability will fall upon you. You know our contact details.

You're welcome, heathens and what's the final lesson? When you're a client of ours and you've accepted an agreement of ours: follow it to the letter. We're not motivated by any political thoughts. We're not hacktivists. We're motivated only by our pursuit of internet money (Bitcoin).

Stay tuned on PasteBin for future announcements related to this leak. We'll always sign all of our releases for verification of authenticity. Subsequent announcements may include this original announcement.

Your friends,
thedarkoverlord (@tdo_h4ck3rs)
Professional Adversarial Threat Group
TheDarkOverlord Solutions LLC, World Wide Web, LLC

Give us a follow on our new Twitter (@tdo_h4ck3rs)!

P.S. We have more documents like these from other hacks of ours. If you're interested in industry specific materials, we can supply them for your purchase. We have dozens of TBs of data from almost all industries! We have everything from customer databases, medical records, credit cards, intellectual property, classified materials, source code, and much more and it's all for sale. Many of our for-sale threads are on the dark web hacker forum 'KickAss' and they detail our requested prices and the content available. We're of course always negotiable on pricing.

P.S.S. To all of our current and past associates, clients, colleagues, customers, and friends: we thank you for your entertaining exchanges and relationships and we wish you continued success.


CONTACT AND LOCATION DETAILS: thedarkoverlord E-Mail Address:
Backup1 E-Mail Address:
Backup2 E-Mail Address: thedarkoverlord@torbox3uiot6wchz.onion
Make your own at (torbox3uiot6wchz.onion)
KickAss Tor Address: kickassugvgoftuk.onion




' [13]
This had been removed from Steemit by 7 January 2019, but was archived at*/

9? January 2019

Leak 2:[14]

“Hello, world. As you're well-aware, we designed a compensation plan that would allow for the public crowd-funding of our organisation in order to permit the public disclosure of our "9/11 Papers" in the interest of the public. Part of this plan was to create a tiered escalation plan that would result in multiple layers and milestones (which we're calling checkpoints) to ensure the powers at be are being properly bent over a barrel. We've said it before, and we'll say it again: we're financially motivated, and you (the public) has spoken to us in our language (internet money, specifically Bitcoin). Remember, continuing to fund our wallet will continue to keep us motivated to help break the truth to the world by open-sourcing what we're calling the "9/11 Papers". To create a bit more buzz, we've decided to continue forward and release the decryption key for Layer 2. As such, let the leaking continue:

Statistics: Layer 2 = 7.566 Files Checkpoint 08 = 50 Files

TOTAL = 7.616 Files

Layer 2

Layer_2.container Decryption Key: 8JYIy&BRIkLi\”
 (2019)  [15]

22? February 2019

Leak 3:

"The newly decrypted folder contains around 5GB of material, including over 8,000 apparent emails".[16]

Become a patron.png August 2020: User:Robin is aiming to crowdfund the webhosting bill. Please help keep this site online. If 1/1000 of our users donated just $1/month, that would cover our costs. Be that one in a thousand!


  1. "The Dark Overlord was recruiting employees and looking for attention before 9/11 data dump". Retrieved 12 January 2019.Page Module:Citation/CS1/styles.css must have content model "Sanitized CSS" for TemplateStyles (current model is "CSS").
  2. "cybersecurity hacking". axios. Retrieved 12 January 2019.Page Module:Citation/CS1/styles.css must have content model "Sanitized CSS" for TemplateStyles (current model is "CSS").
  3. "ndex: Hacker group releases '9/11 Papers', says future leaks will 'burn down' US deep state". HuffpoClub. Retrieved 13 January 2019.Page Module:Citation/CS1/styles.css must have content model "Sanitized CSS" for TemplateStyles (current model is "CSS").
  4. "The Dark Overlord Hackers Threaten To Release TOP SECRET Files of 9/11 Litigation Unless Paid In Bitcoin". HuffpoClub. Retrieved 13 January 2019.Page Module:Citation/CS1/styles.css must have content model "Sanitized CSS" for TemplateStyles (current model is "CSS").
  5. "Hacker Group Dark Overlord Threatens to Dump Insurance Files Related to 9/11 Attacks". HuffpoClub. Retrieved 13 January 2019.Page Module:Citation/CS1/styles.css must have content model "Sanitized CSS" for TemplateStyles (current model is "CSS").
  6. "9/11 Papers Megalink". Retrieved 12 January 2019.Page Module:Citation/CS1/styles.css must have content model "Sanitized CSS" for TemplateStyles (current model is "CSS").
  10. "Steemit Bans Dark Overlord, Raises Concerns over Censorship". BTC Manager. Retrieved 12 January 2019.Page Module:Citation/CS1/styles.css must have content model "Sanitized CSS" for TemplateStyles (current model is "CSS").
  11. "ndex: 9/11 Docs Drop From Dark Overloard". HuffpoClub. Retrieved 13 January 2019.Page Module:Citation/CS1/styles.css must have content model "Sanitized CSS" for TemplateStyles (current model is "CSS").
  13. Steemit
  15. Steemit