Platform Products Research Learn Book Team Investors
Launch App

Onion-Sandwich VPN — Sovereign Anonymity Network

BlackLattice

Activate sovereign anonymity in days. Traffic that cannot be correlated. No single point in the chain ever sees both who you are and where you are going.

Multi-hop routingTraffic-analysis defenseDPI-resistantZero-logPost-quantum signedActive defense

01Why Onion-Sandwich exists

Traffic that cannot be correlated.

Every year criminals move an estimated $10.5 trillion — one stolen login at a time. Identity theft and cyber-enabled fraud are not abstract risks; they are a measurable, compounding transfer of wealth out of individuals and enterprises. Every figure below is drawn from primary sources — the FBI, IBM, Javelin/AARP, and named public incidents — and every card links to the underlying evidence.

Why the world needs it — the address is not the target anymore

Modern adversaries do not need to read the payload if they can correlate the path.

Onion‑Sandwich breaks the single circuit assumption: no relay sees both endpoint identity and destination, while fixed cells, jitter and cover traffic raise the cost of timing correlation.

$0.0B
U.S. IC3 cybercrime losses — YTD run‑rate from 2024
0
IC3 complaints — YTD run‑rate from 2024
0
Phishing and spoofing complaints — YTD run‑rate
0
Countries restricting or blocking VPNs

Capability benchmark

Not all anonymity is the same.

Claims-level comparison against consumer VPNs and Tor, with sources linked where the claim is not our own.

Capability
Typical consumer VPN
Tor alone
Onion-Sandwich VPN
Single party sees both ends
YesVPN provider sees identity + traffic
PartialEntry guard sees IP; exit sees destination
NoNo relay sees both source and destination
Timing-correlation defense
NoDirect tunnel; easy to correlate
PartialVulnerable to observed timing attacks [1]
YesFixed-cell padding + cover traffic + jitter
DPI / censorship resistance
PartialOften blocked or fingerprinted
PartialFingerprinted by adversarial relays [2]
YesObfuscation-resistant profile
Traffic logging
YesProvider-dependent logs
NoNo client logs by design
NoZero-log routing by policy
Active defense
No
No
YesActive defense and misattribution surface
Post-quantum signature trust
No
PartialTraditional relay trust still in place
YesPost-quantum signed trust chain

[1] NDR Panorama, Sep 2024 — German police de-anonymized Tor users via timing analysis. [2] The Record / nusenu, Dec 2021 — KAX17 ran 900+ malicious Tor relays.

What the VPN changes

  • Credential interception drops. Breaches that begin with a stolen credential cost $4.67M and run 246 days undetected. Encrypting and anonymizing the channel removes the intercept point on hotel, airport and public Wi‑Fi.
  • Correlation gets harder. Salt Typhoon proved metadata alone can expose a million people. No relay sees both ends; fixed cells, jitter and cover traffic make timing correlation and location inference fail.
  • Reconnaissance gets denied. BEC ($2.77B) and targeting begin with mapping a principal's activity, associates and travel. Anonymized traffic denies the pattern-of-life that makes a target profitable.

What prevention saves

$4.67MAvg. credential-led breach avoided — IBM 2025
$1.9MAvg. saving per breach with AI + automation prevention — IBM 2025
~3%Share of 2024 losses the FBI clawed back — $561M of $16.6B. The money rarely comes back; prevention is the only reliable control.

Source-linked incident feed

Open article ↗

Open source inventory for metrics and incidents

What it costs without protected access

Showing 12 exposure tiles

$10.22M
Average U.S. enterprise breach cost — IBM 2025
$1.6B
Change Healthcare 2024 impact estimate — remote-access compromise
$2.77B
Business email compromise losses — FBI IC3 2024
$100M
MGM Resorts 2023 cyberattack impact — social engineering
$16.6B
Total U.S. IC3 cybercrime losses — 859,532 complaints
$47B
U.S. identity-fraud & scam losses, 18M victims — Javelin/AARP 2024
192.7M
People affected by Change Healthcare — largest U.S. healthcare breach
$700M
Equifax settlement — 147M people, SSN exposure
$19,372
Average loss per reported fraud incident — FBI IC3 2024
$23.8M
Single SIM-swap loss (Terpin) — one ported phone number
$12.5B
U.S. consumer fraud losses — FTC 2024
10 hrs
Average identity-fraud resolution time, plus out-of-pocket costs — Javelin/AARP
Explore Onion‑Sandwich VPN →

Onion-Sandwich VPN · Sector Risk Console

Your industry is already in the network-risk data.

Select your sector. The console renders what attackers learn from traffic, credentials, remote access, and exposed metadata, a documented incident with the source article, and exactly which Onion-Sandwich VPN controls reduce that surface — with figures drawn from the FBI, IBM, Javelin/AARP, and named public incidents.