New hacking discussion board leaks knowledge of 478,000 RaidForums members


A database for the infamous RaidForums hacking boards has been leaked on-line, permitting menace actors and safety researchers perception into the individuals who frequented the discussion board.

RaidForums was a very talked-about and infamous hacking and knowledge leak discussion board identified for internet hosting, leaking, and promoting knowledge stolen from breached organizations.

Menace actors who frequented the discussion board would hack into web sites or entry uncovered database servers to steal buyer data. The menace actors then tried to promote the info to different menace actors, who use it for his or her campaigns, equivalent to phishing assaults, cryptocurrency scams, or distributing malware.

In lots of circumstances, if knowledge was not bought or a while had handed, the stolen knowledge can be leaked free of charge on RaidForums to realize a fame among the many group.

In April 2022, the RaidForums web site and infrastructure have been seized in a world legislation enforcement operation, with the positioning’s administrator, All-powerful, and two accomplices arrested.

After Raidforums closed, customers flocked to a brand new discussion board referred to as Breached to proceed buying and selling stolen databases. Nonetheless, Breached shut down in March 2023 after its founder and proprietor, Pompompurin, was arrested by the FBI, and the positioning’s different admin grew to become involved that legislation enforcement had entry to their servers.

RaidForums database leaked on-line

Earlier this month, a discussion board referred to as ‘Uncovered’ was launched, aiming to fill the void left behind by the closure of Breached, and it has shortly turn into standard.

As we speak, one of many web site’s admins, ‘Impotent,’ leaked the RaidForums member database, exposing a wealth of data to different menace actors, researchers, and, probably, legislation enforcement.

Forum post leaking the RaidForums member database
Discussion board publish leaking the RaidForums member database
Supply: BleepingComputer

BleepingComputer has seen the leaked knowledge, and it consists of a single SQL file for the ‘mybb_users’ desk utilized by RaidForums’ discussion board software program to retailer registration data.

This desk comprises the registration data for 478,870 RaidForums members, together with their usernames, e-mail addresses, hashed passwords, registration dates, and quite a lot of different data associated to the discussion board software program.

The leaked desk comprises member data for customers who registered between March twentieth, 2015, and September twenty fourth, 2020, doubtless when the database was dumped.

Impotent says that some RaidForums members have been faraway from the database and that it’s unknown when and why the dump was initially created.

BleepingComputer has confirmed that the data for quite a few accounts within the database comprise identified registration data. Moreover, members of the Uncovered discussion board have additionally confirmed that their data is within the MySQL desk, indicating that the leaked desk is reputable.

Whereas it is doubtless that the database is already within the arms of legislation enforcement after the discussion board was seized, this knowledge might nonetheless be helpful for safety researchers who generally construct profiles of menace actors.

Utilizing the leaked registration data, researchers can study extra in regards to the menace actors and probably hyperlink them to different malicious actions.

Leave a Reply

Your email address will not be published. Required fields are marked *