Security & OpSec Protocols
Standard Operating Procedure for Nexus Market
The integrity of the Nexus Market ecosystem relies on user discipline. The following protocols are non-negotiable for maintaining anonymity and financial security. Failure to adhere to these standards compromises the entire network node.
Threat Level
High volume of phishing mirrors detected.
Protocol Index
Identity Isolation CRITICAL
The most common vector for de-anonymization is user error, specifically the contamination of the Tor identity with the Clearnet identity. You must construct a firewall between your real life and your Nexus Market activity.
- Username Hygiene: Never reuse a username or password that you have used on Reddit, forums, gaming accounts, or email services.
- Digital Fingerprinting: Do not discuss your market activity on clear web platforms or Discord, even if you think you are "anonymous."
- Data Leakage: Never upload images containing EXIF data. Nexus Market strips this automatically, but you should clean it yourself first.
Phishing Defense & Verification
Nexus Market is a primary target for "Man-in-the-Middle" attacks. Phishing sites clone the interface exactly but steal your credentials and deposit addresses.
The Golden Rule of Verification
The ONLY way to confirm you are on the real Nexus Market is to verify the PGP signature of the onion address.
- Import the Nexus Market public key into your PGP software (Kleopatra/GPG).
- Navigate to the login page.
- Copy the PGP signed message containing the current onion URL.
- Verify the signature matches the public key.
WARNING: Do not trust links from "Hidden Wikis", Reddit, or Telegram groups. Only use mirrors signed by the market's key key.
Tor Browser Hardening
A default Tor Browser installation is not sufficient for high-threat environments. You must configure the browser to resist fingerprinting and script execution.
Security Level
Set Security Level to Safer or Safest.
This disables JavaScript on non-HTTPS sites and prevents some font rendering exploits.
Window Sizing
NEVER resize the Tor Browser window manually.
Maximizing or resizing creates a unique screen resolution fingerprint that can track you across sessions.
Financial Hygiene
Blockchain analysis has advanced significantly. Sending funds directly from a KYC (Know Your Customer) exchange like Coinbase or Binance to a market wallet is a direct link to your identity.
Do Not Use BTC Directly
Bitcoin's ledger is transparent. Using BTC without coinjoins is not private.
Use Monero (XMR)
Monero is the only currency with mandatory privacy features (Ring Signatures, Stealth Addresses) that obfuscates sender, receiver, and amount.
Intermediary Wallets
Exchange -> Personal Wallet (GUI/Cake) -> Nexus Market. Never send Exchange -> Market.
PGP Encryption (Client-Side)
"If you don't encrypt, you don't care." Relying on market auto-encryption features is dangerous because the server can see the plaintext before encrypting it.
Protocol:
- ✓ Obtain the vendor's public PGP key from their profile.
- ✓ Import the key into your local keyring (Kleopatra/GPG Keychain).
- ✓ Write your shipping info in a text editor on your own machine.
- ✓ Encrypt the message locally.
- ✓ Paste ONLY the ASCII armored block into the Nexus Market order form.