May 29, 2024 at 05:41PM
Following the shutdown of BreachForums by the FBI and the DOJ, the alleged reappearance of the site has raised suspicions among researchers. The revival includes attempts to sell purported personal data of 560 million customers. There are doubts regarding the legitimacy of the revival, with experts pointing to potential law enforcement involvement or attempts to trap cybercriminals.
Based on the meeting notes, it seems that there is uncertainty regarding the legitimacy of the revived BreachForums operation. Although data purportedly belonging to Live Nation/TicketMaster customers was being sold on the forum for a significant amount, there are doubts about whether this revival is authentic or a possible ploy by law enforcement to ensnare cybercriminals. The suspiciously large dataset and the requirement for users to register on the site have raised concerns. It is noted that similar tactics have been used by law enforcement in the past to trap cybercriminals.
There are also indications that the revival could be genuine, as it aligns with previous trends of cybercriminals returning to familiar platforms. Evidence suggests that BreachForums is operational, with Dark Web chatter pointing to the forum’s domain being transferred elsewhere after its seizure by law enforcement.
In addition, there is mention of a potential launch of a similar leak site by another member associated with BreachForums, indicating a continued threat of such forums proliferating.
The analogy of BreachForums being compared to cancer, lurking in the background and waiting to re-emerge, underscores the persistent nature of these malicious platforms.
Overall, there is a mix of skepticism and acknowledgment that the revived BreachForums operation poses a significant threat, both in terms of its potential legitimacy and the continued proliferation of similar forums.