July 23, 2024 at 03:27PM
The private member information of the BreachForums v1 hacking forum from 2022 has been leaked online, providing insight into its users. The original RaidForums was seized by the FBI in 2022, leading to the creation of BreachForums. The data includes 212,414 members’ personal information, which was later attempted to be sold and also added to a data breach notification service.
From the meeting notes provided, the key takeaways are as follows:
– The private member information of the BreachForums v1 hacking forum from 2022 has been leaked online, providing insight for threat actors and researchers into its users.
– Multiple forums have operated under the name BreachForums, with the initial data breach forum being RaidForums, which was seized by the FBI in 2022, prompting a remade version called BreachForums (aka Breached) launched by Pompompurin.
– BreachForums quickly rose to prominence with threat actors proudly leaking massive amounts of stolen data, including data from U.S. Congress’ healthcare provider D.C. Health Link, RobinHood, and Twitter, among others.
– The forum’s owner, Conor Fitzpatrick (aka Pompompurin), was arrested by the FBI in March 2023, leading to the creation and seizure of multiple instances of the forum, with the latest incarnation launched by ShinyHunters and still in operation.
– Data from what is referred to as BreachForums 1.0, originally created by Fitzpatrick in 2022 and seized by the FBI in 2024, has been leaked, including personal information of 212,414 members, allegedly coming directly from Fitzpatrick and later sold to three threat actors.
– Additional attempts to sell the forum database were made in July 2023 by ‘breached_db_person’, including a MEGA account backup from November 2022, and this data contains a forum member’s user ID, login name, email address, and IP addresses.
– The leaked data, which includes records of researchers who had accounts on the original BreachForums, could be helpful for security researchers and law enforcement in building profiles of threat actors.
– The RaidForums database, containing the data of 478,000 members, was also leaked online in May 2023.
These takeaways provide a clear overview of the breaches, the individuals involved, and the leaked data, which is essential for understanding the potential impact and implications, as well as for informing future actions and decisions.