dark web service provider vulnerabilities