[ISN] Vigilantes Hack Criminal Carding Forum and Expose Underground Dealings

From: InfoSec News <alerts_at_private>
Date: Thu, 20 May 2010 00:35:54 -0500 (CDT)

By Kim Zetter
Threat Level
May 19, 2010

A German cybercrime forum was hacked by attackers who have exposed the 
underground dealings of the criminal denizens. The hackers snagged the 
database containing what appears to be all the private correspondence of 
the forum members, and posted it to the web.

The hackers also posted information on the IP addresses forum members 
used when they signed up for membership, noting that most of the 
administrators and moderators on the site didn't use a proxy to access 
it. They also posted usernames, e-mail addresses and some cracked 
passwords of members, who number 5,000. The data was posted to the 
RapidShare file-trading site.

    Here we go. Some crazy combination of username:password:plain:mail. 
    I hope you guys dont mind if we did not crack all of them. Passwords 
    are stored as sha1($username.$pass). Feel free to bruteforce the 


The hack was first reported by Brian Krebs.

Carders.cc was hacked through a poorly secured web server, according to 
the attackers, who disclosed their method and reason for hacking the 
forum in an e-zine they published with one of the data files:


Best Selling Security Books and More!
Shop InfoSec News
Received on Wed May 19 2010 - 22:35:54 PDT

This archive was generated by hypermail 2.2.0 : Wed May 19 2010 - 22:45:13 PDT