This time hackers target was a well known underground hacking forum Nulled.io. Hackers exposed data around 500,000 members, who used the website to expedite the selling and sharing of compromised passwords and stolen credentials.
Hackers leaked around 1.3 GB tar archive file online, which contains
- IP Address
- Email addresses
- Private messages
What is Nulled.io
popular hacker forum which is being used for the tagline “expect the unexpected”.According to their website, appears to have 473,700 registered users who share, sell and buy leaked content, stolen credentials, nulled software and software cracks.
The Nulled.IO forum was compromised and data was leaked on May 6th consisting of a 1.3GB tar.gz compressed archive which when expanded is a 9.45GB SQL file named db.sql, which contains over 5,500 purchase records and 12,600 invoices detailing the buying, selling and sharing of stolen credentials.
The accounts compromised all contain user names, email addresses, encrypted passwords, registration dates and registered with IP address. Other tables such as the nexus transactions table for VIP access payments contains User ID ( which can be matched back to users in the customers table), payment methods, paypal emails, dates and costs.
The database actually contains 536,064 user accounts with 800,593 user personal messages, 5,582 purchase records and 12,600 invoices which seem to include donation records as well.
It is still not clear who is behind the data breach and what security loop hole they used to take control. We will keep posted for the same when we got any update.
Why is this leak important?
When services such as Nulled.IO are compromised and data is leaked, often it exposes members who prefer to remain anonymous and hide behind screen names. By simply searching by email or IP addresses, it can become evident who might be behind various malicious deeds. As you can imagine, this can lead to significant problems for forum users. If law enforcement obtains this information, (which no doubt they already have) it can be used to filter out any “suspects” under investigation for possibly conducting illegal activities via the forums. With this being such a comprehensive dump of data it offers up a very good set of information for matching a member ID to the attached invoices, transactions and other content such as member messages and posts.
Subscribe for latest hacking updates