Facebook-f Linkedin-in Instagram Tiktok Youtube
Become An Affiliate
25
Apr

Breached cybercrime forum hit by massive data breach | #cybercrime | #infosec

0

[ad_1]

The cybercrime ecosystem is once again facing one of its own risks: becoming a victim of an attack. The Breached forum, successor to BreachForums and RaidForums and one of the most active meeting points for cybercriminals, is said to have suffered unauthorized access to its internal infrastructure.

According to posts detected on rival forums, a threat actor operating under the alias 4uikeepmylegsapart claims to have compromised the platform and is attempting to sell both the complete user database and the site’s source code for the modest price of $2,000.

The attacker claims to have exploited vulnerabilities in the forum itself to gain access to internal systems. As proof, they have published a sample of the data, indicating that the database dump is barely four days old at the time of its sale.

The hacker offers a package that includes a user database of approximately 3.3 GB and the complete source code of the forum.

In the sample shared by the cybercriminal, quite sensitive details can be found, such as user ID and name, email address, password hash, biography, signature and forum activity, registration and last activity dates, country and language preferences, internal metrics such as reputation, credits and number of posts, session tokens, and IP addresses and associated data.

The message also makes unverified claims about the nature of the forum, including derogatory comments and references to alleged security weaknesses, as well as the insinuation that the system may have been developed or assisted by artificial intelligence.

However, beyond these statements, there is currently no independent technical evidence to confirm the access vector or the complete authenticity of the dump.

The alias 4uikeepmylegsapart does not appear linked to previously well-documented campaigns or known threat groups in the regularly consulted threat intelligence ecosystem. There are also no cross-attributes at this time that would allow it to be related to previous operations of breaches in similar forums.

Hackers hacked

The incident once again highlights a recurring paradox in this ecosystem: even spaces designed to host illicit activity are not exempt from intrusions, leaks, or internal betrayals. The lack of trust among actors, the pressure to quickly monetize any access, and the fragmented nature of these forums make these platforms vulnerable targets.

Beyond the immediate impact, such leaks can have significant value for researchers and law enforcement, as the correlation of emails, password hashes, and IP information could facilitate the attribution of identities behind aliases used for cybercrime.

The cybercrime ecosystem is once again facing one of its own risks: becoming a victim of an attack. The Breached forum, successor to BreachForums and RaidForums and one of the most active meeting points for cybercriminals, is said to have suffered unauthorized access to its internal infrastructure.

According to posts detected on rival forums, a threat actor operating under the alias 4uikeepmylegsapart claims to have compromised the platform and is attempting to sell both the complete user database and the site’s source code for the modest price of $2,000.

The attacker claims to have exploited vulnerabilities in the forum itself to gain access to internal systems. As proof, they have published a sample of the data, indicating that the database dump is barely four days old at the time of its sale.

The hacker offers a package that includes a user database of approximately 3.3 GB and the complete source code of the forum.

In the sample shared by the cybercriminal, quite sensitive details can be found, such as user ID and name, email address, password hash, biography, signature and forum activity, registration and last activity dates, country and language preferences, internal metrics such as reputation, credits and number of posts, session tokens, and IP addresses and associated data.

The message also makes unverified claims about the nature of the forum, including derogatory comments and references to alleged security weaknesses, as well as the insinuation that the system may have been developed or assisted by artificial intelligence.

However, beyond these statements, there is currently no independent technical evidence to confirm the access vector or the complete authenticity of the dump.

The alias 4uikeepmylegsapart does not appear linked to previously well-documented campaigns or known threat groups in the regularly consulted threat intelligence ecosystem. There are also no cross-attributes at this time that would allow it to be related to previous operations of breaches in similar forums.

Hackers hacked

The incident once again highlights a recurring paradox in this ecosystem: even spaces designed to host illicit activity are not exempt from intrusions, leaks, or internal betrayals. The lack of trust among actors, the pressure to quickly monetize any access, and the fragmented nature of these forums make these platforms vulnerable targets.

Beyond the immediate impact, such leaks can have significant value for researchers and law enforcement, as the correlation of emails, password hashes, and IP information could facilitate the attribution of identities behind aliases used for cybercrime.


[ad_2]

Click Here For The Original Source.

——————————————————–

..........

.

.

Facebook-f Linkedin-in Instagram Tiktok Youtube
Our Products
Company
Other Links

Copyright 2005 – 2025 National Cyber Security

National Cyber Security

FREE
VIEW