Navigation X
ALERT
Click here to register with a few steps and explore all our cool stuff we have to offer!



 14165

Ironic: Stolen database trading site WeLeakData hacked; data leaked

by Encryption - 15 May, 2020 - 02:35 PM
This post is by a banned member (Encryption) - Unhide
79
Posts
8
Threads
4 Years of service
#1
(This post was last modified: 09 June, 2020 - 08:27 PM by Encryption.)
We come across data breaches exposing sensitive data every day. Some are small in nature, some big enough to be reported in the media. Regardless of the publicity, there are actors out there that use this exposed data to make money through different malicious methods such as ransomware or simply selling the data to interested parties.
One such actor engaging in the latter happens to be a website named WeLeakData[.]com. Operating as a forum that helps connect buyers and sellers of stolen and breached databases; it does so through the help of its management who according to research firm Cyble, are well connected to hacking groups and hence have attracted significant publicity.

Further, it uses Shoppy, an e-commerce platform to manage its membership system ensuring the site functions smoothly. It is worth noting that terabytes of stolen data was also being sold on Shoppy.
However, just recently, a team at Cyble has discovered that the site was breached itself in a chain of events. Firstly, there were rumors in January 2020 that the site had been taken control of by the FBI as it was offline even though these claims could not be substantiated. 
 
Don’t confuse WeLeakData with WeLeakInfo, the latter was seized by the FBI in January 2020.

[Image: weleakdata-site-1024x759.jpg]
WeLeakData’s homepage

On the other hand, members of WeLeakData also pointed out to the researchers that this was not the case. However, when it did come back online, there were reports that it had been sold to a new member. Yet, at the very same time, a duplicate version of the site also sprang up named leaksmarket[.]com with the very same exact listings.

[Image: Popular-database-trading-site-breached-s...24x577.jpg]

In a blog post, Cyble’s researchers wrote that:
Quote:It was clear to us by then, the original WeLeakData database has been compromised, or the original owner has decided to re-brand it. However, when they came back online in April, the second hypothesis got nulled, and we then had a high degree of the confidence level of a data breach, at one of the largest cracking communities itself.

Then last month in April 2020, Cyble was able to find the database of WeLeakData on a dark web marketplace confirming their suspicions, the company told Hackread.com.
[Image: Popular-database-trading-site-breached-s...rests1.jpg]

Contrary to what happens usually, this time the database contained confidential information about the criminals behind the site including their:
  • Emails
  • Usernames
  • Passwords
  • Private Messages
  • IP addresses
All of these can be used to trace down these criminals and consequently result in criminal prosecutions. However, the use of aliases may make this difficult as most likely these cybercriminals were using VPNs to hide their real IP address. This would require law enforcement agencies to use the other available information and form a picture based on that.
 
 
An example of the messages obtained is in the photo below:
[Image: database-trading-site-weleakdata-hacked-...aked-2.jpg]
Leaked WeLeakedData’s private messages
 
Although the code alongside reduces their readability, the messages can be seen nonetheless. Owing to these revelations, it is possible that certain arrests conducted by Europol recently may have included the site’s owner.

To conclude, for the future, we are yet to see a disclosure of the real identity of the site’s owner, although Cyble has debunked their alias. For those of you who may be concerned about your data, you can check if you were a part of WeLeak’s database by entering your email address at amibreached.com.


Source
This post is by a banned member (danol) - Unhide
danol  
Supreme
74
Posts
48
Threads
4 Years of service
Warned #2
(This post was last modified: 23 May, 2020 - 04:14 AM by danol.)
[font][font]我需要一个论坛购买数据库bro![/font][/font]
This post is by a banned member (pred) - Unhide
pred  
Registered
138
Posts
7
Threads
5 Years of service
#3
the irony lmao..... using a leaked database forum to get leaked stuff just to get ur stuff leaked....
This post is by a banned member (Satya5) - Unhide
Satya5  
Registered
14
Posts
0
Threads
4 Years of service
Warned #4
Hixgfnvb
This post is by a banned member (Assembly) - Unhide
Assembly  
Registered
249
Posts
7
Threads
4 Years of service
#5
max amount of irony
This post is by a banned member (yafob91541) - Unhide
1
Posts
0
Threads
4 Years of service
#6
(This post was last modified: 24 May, 2020 - 11:19 AM by yafob91541.)
@Encryption WeLeakData is never hacked. The leak what they have is fake not real.



shorturl.at/crFX6
This post is by a banned member (Encryption) - Unhide
79
Posts
8
Threads
4 Years of service
#7
This is a bump
This post is by a banned member (Encryption) - Unhide
79
Posts
8
Threads
4 Years of service
#8
This is a bump

Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
or
Sign in
Already have an account? Sign in here.


Forum Jump:


Users browsing this thread: 1 Guest(s)