Onion-Sandwich VPN — Sovereign Anonymity Network
BlackLattice
Activate sovereign anonymity in days. Traffic that cannot be correlated. No single point in the chain ever sees both who you are and where you are going.
01Why Onion-Sandwich exists
Traffic that cannot be correlated.
Every year criminals move an estimated $10.5 trillion — one stolen login at a time. Identity theft and cyber-enabled fraud are not abstract risks; they are a measurable, compounding transfer of wealth out of individuals and enterprises. Every figure below is drawn from primary sources — the FBI, IBM, Javelin/AARP, and named public incidents — and every card links to the underlying evidence.
Why the world needs it — the address is not the target anymore
Modern adversaries do not need to read the payload if they can correlate the path.
Onion‑Sandwich breaks the single circuit assumption: no relay sees both endpoint identity and destination, while fixed cells, jitter and cover traffic raise the cost of timing correlation.
Capability benchmark
Not all anonymity is the same.
Claims-level comparison against consumer VPNs and Tor, with sources linked where the claim is not our own.
[1] NDR Panorama, Sep 2024 — German police de-anonymized Tor users via timing analysis. [2] The Record / nusenu, Dec 2021 — KAX17 ran 900+ malicious Tor relays.
What the VPN changes
- Credential interception drops. Breaches that begin with a stolen credential cost $4.67M and run 246 days undetected. Encrypting and anonymizing the channel removes the intercept point on hotel, airport and public Wi‑Fi.
- Correlation gets harder. Salt Typhoon proved metadata alone can expose a million people. No relay sees both ends; fixed cells, jitter and cover traffic make timing correlation and location inference fail.
- Reconnaissance gets denied. BEC ($2.77B) and targeting begin with mapping a principal's activity, associates and travel. Anonymized traffic denies the pattern-of-life that makes a target profitable.
What prevention saves
Source-linked incident feed
Open article ↗
Salt Typhoon targeted U.S. telecom wiretap systems
Chinese state-linked hackers breached major broadband providers. The strategic lesson: metadata and routing visibility can be as valuable as content.
Open source NDR Panorama · Sep 2024German police de-anonymized Tor users via timing analysis
Reporters described documented timing-analysis operations against Tor. Single-circuit anonymity is vulnerable when enough packet timing is observed.
Open source The Guardian · Jun 2024Airport “evil twin” Wi‑Fi harvested credentials
Fake airport and in‑flight networks allegedly pushed users into credential pages. Authorities advised public-network precautions including VPNs.
Open source The Record / nusenu · Dec 2021KAX17 ran 900+ malicious Tor relays
A persistent actor operated hundreds of relays across Tor positions. Passive anonymity infrastructure is not neutral terrain; it is actively hunted.
Open source Terpin v. AT&T · 2018–2020$23.8M drained in a single SIM-swap
A bribed carrier employee ported one phone number; password resets emptied a crypto wallet. A principal's phone number and traffic pattern are the entry point.
Open source U.S. DOJ / NPR · 2013–2019Facebook & Google wired $121M to a spoofed vendor
One man with spoofed invoices defrauded two of the most security-mature companies on earth. Attackers log in — or get invited in — rather than hack in.
Open sourceOpen source inventory for metrics and incidents
What it costs without protected access
Showing 12 exposure tiles
Onion-Sandwich VPN · Sector Risk Console
Your industry is already in the network-risk data.
Select your sector. The console renders what attackers learn from traffic, credentials, remote access, and exposed metadata, a documented incident with the source article, and exactly which Onion-Sandwich VPN controls reduce that surface — with figures drawn from the FBI, IBM, Javelin/AARP, and named public incidents.
Investor access
Access is granted,
not requested.
Enter your work email. We'll review your request and send a secure sign-in link if approved.
Already approved? Open the investor portal →