Simply write them down and use them from now on.”Ī short time later, the administrator updated his post, saying: So, we’ve decided to reset everyone’s codes. In our business, it’s better to play safe. Once the circumstances became clear, the admin assumed that THEORETICALLY, all the forum’s accounts could have been compromised (the probability is low, but it is there). Luckily, we did not keep large amounts in it, but this is an unpleasant incident anyway. 20, a longtime administrator of the Russian language forum Verified disclosed that the community’s domain registrar had been hacked, and that the site’s domain was redirected to an Internet server the attackers controlled.Ī note posted by a Verified forum administrator concerning the hack of its registrar in January. The attack on Maza comes just weeks after another major Russian crime forum got plundered. “Initial analysis of the leaked data pointed to its probable authenticity, as at least a portion of the leaked user records correlated with our own data holdings.” “The file comprised more than 3,000 rows, containing usernames, partially obfuscated password hashes, email addresses and other contact details,” Intel 471 found, noting that Maza forum visitors are now redirected to a breach announcement page. This is notable because ICQ numbers tied to specific accounts often are a reliable data point that security researchers can use to connect multiple accounts to the same user across many forums and different nicknames over time.Ĭyber intelligence firm Intel 471 assesses that the leaked Maza database is legitimate. ICQ, also known as “I seek you,” was an instant message platform trusted by countless early denizens of these older crime forums before its use fell out of fashion in favor of more private networks, such as Jabber and Telegram. The database also includes ICQ numbers for many users. “ Maza,” “ MFclub“), an exclusive crime forum that has for more than a decade played host to some of the most experienced and infamous Russian cyberthieves.Īt the top of a 35-page PDF leaked online is a private encryption key allegedly used by Maza administrators. On Tuesday, someone dumped thousands of usernames, email addresses and obfuscated passwords on the dark web apparently pilfered from Mazafaka (a.k.a. References to the leaked Mazafaka crime forum database were posted online in the past 48 hours.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |