“Most likely just out of laziness or incompetence, they gave up the whole thing. “It should be clear by now that the forum administration did not do an acceptable job with the security of this whole thing,” the attacker explained. 15, the administrator posted a message purportedly sent on behalf of the intruders, who claimed they hacked Verified’s domain registrar between Jan.
The registrar was hacked first, then domain name servers were changed, and traffic was sniffed.” The forum was hacked through the domain registrar. Pass this information to people you know. Everyone’s account passwords were forcibly reset.
“We are getting messages that the forum’s databases were filched after all when the forum was hacked. Simply write them down and use them from now on.”Ī short time later, the administrator updated his post, saying: So, we’ve decided to reset everyone’s codes. In our business, it’s better to play safe. Once the circumstances became clear, the admin assumed that THEORETICALLY, all the forum’s accounts could have been compromised (the probability is low, but it is there). Luckily, we did not keep large amounts in it, but this is an unpleasant incident anyway. 20, a longtime administrator of the Russian language forum Verified disclosed that the community’s domain registrar had been hacked, and that the site’s domain was redirected to an Internet server the attackers controlled.Ī note posted by a Verified forum administrator concerning the hack of its registrar in January. The attack on Maza comes just weeks after another major Russian crime forum got plundered. “Initial analysis of the leaked data pointed to its probable authenticity, as at least a portion of the leaked user records correlated with our own data holdings.”
CRAZY RUSSIAN HACKER BAR BETS PASSWORD
“The file comprised more than 3,000 rows, containing usernames, partially obfuscated password hashes, email addresses and other contact details,” Intel 471 found, noting that Maza forum visitors are now redirected to a breach announcement page. This is notable because ICQ numbers tied to specific accounts often are a reliable data point that security researchers can use to connect multiple accounts to the same user across many forums and different nicknames over time.Ĭyber intelligence firm Intel 471 assesses that the leaked Maza database is legitimate. ICQ, also known as “I seek you,” was an instant message platform trusted by countless early denizens of these older crime forums before its use fell out of fashion in favor of more private networks, such as Jabber and Telegram. The database also includes ICQ numbers for many users.
CRAZY RUSSIAN HACKER BAR BETS PDF
“ Maza,” “ MFclub“), an exclusive crime forum that has for more than a decade played host to some of the most experienced and infamous Russian cyberthieves.Īt the top of a 35-page PDF leaked online is a private encryption key allegedly used by Maza administrators. On Tuesday, someone dumped thousands of usernames, email addresses and obfuscated passwords on the dark web apparently pilfered from Mazafaka (a.k.a. References to the leaked Mazafaka crime forum database were posted online in the past 48 hours.
0 kommentar(er)
