Russian cybercriminal forum hacked, user details exposed

Russian cybercrime forum hacked, user details exposed

Oh dear. How unfortunate.

A Russian cybercrime forum appears to have suffered a data breach, spilling details of users.

Risk intelligence experts at Flashpoint say that the elite Russian-language cybercrime forum “Maza” – previously known as “Mazafaka” – has been hacked, exposing information about forum members including the following data:

User id
Username
email
Password (hashed and obfuscated)
Crt_filename
Crt_pass
Icq (when available)
Aim (when available)
Yahoo (when available)
Msn (when available)
Skype (when available)

I’ve obscured some of the information exposed by the screenshot above. The hackers weren’t so generous. Source: Flashpoint

Forum hacked — I’ve obscured some of the information exposed by the screenshot above. The hackers weren’t so generous. Source: Flashpoint

Normally when an online forum suffers a data breach, its users have to be on their guard against attacks from cybercriminals and fraudsters who might try to exploit the leaked details.

That still applies here, of course. But I imagine users of the notorious Maza forum may also be concerned quite what law enforcement agencies will do with the information if it falls into their hands too…

Sign up to our newsletter
Security news, advice, and tips.

Found this article interesting? Follow Graham Cluley on Twitter to read more of the exclusive content we post.

Graham Cluley is a veteran of the anti-virus industry having worked for a number of security companies since the early 1990s when he wrote the first ever version of Dr Solomon’s Anti-Virus Toolkit for Windows. Now an independent security analyst, he regularly makes media appearances and is an international public speaker on the topic of computer security, hackers, and online privacy.

Follow him on Twitter at @gcluley, or drop him an email.

Russian cybercriminal forum hacked, user details exposed

Leave a Reply Cancel reply

Researchers devised an attack technique to extract ChatGPT training data

Fortune-telling website WeMystic exposes 13M+ user records

Expert warns of Turtle macOS ransomware

US govt sanctioned North Korea-linked APT Kimsuky

Black Basta Ransomware gang accumulated at least $107 million in Bitcoin ransom payments since early 2022

CISA adds ownCloud and Google Chrome bugs to its Known Exploited Vulnerabilities catalog

Apple addressed 2 new iOS zero-day vulnerabilities

Critical Zoom Room bug allowed to gain access to Zoom Tenants

Smashing Security podcast #350: Think before you shrink! And our guest is faked

Rhysida ransomware group hacked King Edward VII’s Hospital in London

Google addressed the sixth Chrome Zero-Day vulnerability in 2023

Okta reveals additional attackers’ activities in October 2023 Breach

Thousands of secrets lurk in app images on Docker Hub

Threat actors started exploiting critical ownCloud flaw CVE-2023-49103

International police operation dismantled a prominent Ukraine-based Ransomware group

Related Posts

Leave a Reply Cancel reply