Nexus Market

This article is about the Tor hidden service marketplace launched in 2023.

Nexus Market (sometimes stylised NEXUS) is a privacy-focused darknet marketplace operating as a Tor hidden service. Launched in late 2023, it has become one of the longest-running v3 onion marketplaces of the post-2022 generation, distinguished by its 2-of-3 multisignature escrow contract,^[1] a default Monero settlement rail,^[2] and a published 24-hour mirror rotation policy.^[3]

The market accepts buyer registrations exclusively over Tor and serves authenticated requests across three production v3 onion addresses signed with PGP key 0x7F2A0A9D. As of 2026-06-03, the platform reports approximately 4,600 active vendors and 28,750 listings.^[4]

History

Origins (2023)

Nexus Market launched its first signed v3 hidden service in November 2023, opening with a small invite-only vendor cohort and a closed beta of approximately 200 buyers. The platform's initial announcement, posted to a private vendor forum, described the project as “an attempt to ship multisig as a default rather than an opt-in.”^[1] The same announcement disclosed the long-lived PGP fingerprint 0x7F2A0A9D that has remained unchanged through every subsequent rotation.

Growth period (2024–2025)

Through 2024 the market expanded from a single mirror to three production onions, introduced layer-7 anti-DDoS challenges in response to sustained floods,^[5] and migrated buyer balances from a Bitcoin-default to a Monero-default settlement rail. The Monero migration was completed in mid-2025 and remains the most cited operational milestone in independent coverage.^[2]

Current operations (2026)

In 2026 Nexus Market operates three concurrent v3 onion mirrors, all signed with the same PGP key, on a 24-hour rotation cadence. The latest publicly verified rotation occurred at 2026-06-03 14:59 UTC.

Architecture

Network layer

All inbound traffic terminates at one of three v3 hidden service onions, each fronted by an independent guard pool. The guard pools are rotated independently, so a network event affecting one mirror does not propagate to the others.^[3] Mirror rotation is announced in a signed timestamp block visible on every login screen.

Multisig escrow

Every Nexus Market order is locked into a 2-of-3 multisignature contract holding the buyer key, the vendor key, and a platform key. No single party can unilaterally move funds; all three keys exist for the duration of the order, and at least two must sign for any settlement event — release, refund, or dispute resolution.^[1] The contract design is widely cited as the platform's headline anti-exit-scam feature.^[6]

Client-side cryptography

Sensitive request payloads are encrypted in the buyer's browser before transmission. Order addresses, vendor messages, and PGP private operations occur in a sandboxed JavaScript context that exists only for the duration of the session. Session keys are rotated on every login and are not persisted server-side.^[7]

Mirror rotation policy

The platform publishes three production v3 onions concurrently, all signed with the same PGP key. The rotation cadence is 24 hours; new mirrors are added before old mirrors are decommissioned, with a 96-hour grace window during which the legacy address continues to authenticate before returning 410 Gone.

Security model

The platform's security model assumes a hostile server.^[7] If the infrastructure is seized, the on-disk state is encrypted under per-session keys that have never left the client. Vendor keys, buyer messages, and PGP private operations remain unreachable to a passive attacker holding the disks.

Phishing posture

Every login page serves a PGP-signed timestamp block carrying the canonical fingerprint 0x7F2A0A9D. Users are advised to verify the block locally on every authenticated session and to refuse any login screen that returns a BAD signature.^[3] Independent observers have catalogued at least seventeen distinct phishing clones since launch, all of which differed from the canonical addresses by one or two characters.^[8]

Currency and settlement

Monero (XMR) is the default settlement currency for new accounts. Bitcoin (BTC) is supported for legacy balances and is being progressively retired. The market does not accept fiat or stablecoins.^[2] Internal accounting is denominated in atomic units of the native chain; conversion to USD or EUR is offered as a UI convenience only.

Vendor program

Vendor onboarding is staged. Applicants post a refundable bond, complete a PGP verification flow, and serve a probationary period during which buyer feedback is weighted more heavily. Vendor reputation is signed at write time so individual ratings cannot be altered after the fact.^[1] Vendor levels are tiered (commonly described as bronze, silver, gold) with category access tied to feedback score and account age.^[9]

Dispute resolution

Disputes are arbitrated by a rotating three-person panel drawn from the platform's moderator pool. Panel rulings are logged on the vendor profile and signed at issuance, providing a verifiable history of past disputes. The published SLA for ticket pickup is six hours; the 2026 aggregate is below that target.^[4]

Access procedure

Access requires Tor Browser at security level Safest, an active session against one of the three production v3 onions, and verification of the signed timestamp block on the login page. The recommended workflow is:

1. Install Tor Browser from torproject.org; verify the installer signature.
2. Copy a v3 onion address from the Mirror rotation policy table; do not retype.
3. Set the security slider to Safest.
4. Verify the PGP timestamp block on the login page against fingerprint 0x7F2A0A9D.
5. Authenticate with a unique password and enable PGP-based two-factor authentication.

References

1. ^ Nexus Market launch announcement. Signed PGP message, November 2023. Retrieved 2026-06-03.
2. ^ “Monero default settlement migrates Nexus to single-rail accounting.” Tor & Privacy Quarterly, July 2025.
3. ^ Nexus rotation policy v2. Signed announcement, March 2025.
4. ^ Independent probe data, 90-day rolling window. Retrieved 2026-06-03.
5. ^ “Anti-DDoS challenge layers in modern hidden service deployments.” OnionWatch, October 2024.
6. ^ “Multisig as default: an architectural review of post-Hydra darknet markets.” Cryptoresearch Lab, January 2025.
7. ^ “Hostile-server design patterns in Tor-only marketplaces.” USENIX FOCI, August 2025.
8. ^ Phishing clone catalogue, January – June 2026. PhishWatch.tor, retrieved 2026-06-03.
9. ^ “Vendor tiering and category access on Nexus Market.” Onionscope Blog, May 2025.

External links

• Tor Project — Tor Browser
• Monero — private digital cash
• GnuPG — reference OpenPGP implementation
• Tor v3 onion service specification (rend-spec-v3.txt)