The Maza cybercrime discussion board was hacked and member information leaked within the newest of a sequence of assaults focusing on largely Russian-speaking hacker boards.
Maza, aka Mazafuka, is likely one of the oldest cybercrime boards the place the remainder of the group should vote on aspiring members earlier than they’re granted entry.
“Maza is taken into account to be one of many oldest and elite crime communities with one of many highest obstacles of entry for hackers because the days of DirectConnection discussion board (dwelling of the Dridex operators),” cybersecurity intelligence agency Superior Intel’s Vitali Kremez advised BleepingComputer.
Final evening, BleepingComputer was contacted by a newly registered Twitter consumer who said that the Maza discussion board was hacked and member information was leaked.
“Maza discussion board hacked and credentials leaked! Verified, Dread, club2crd and now maza, are the darkweb boards secure anymore?,” the Twitter consumer said together with the next screenshot of the leak.
The leaked information consists of roughly 2,982 consumer data and accommodates members’ consumer IDs, consumer names, e mail addresses, redacted passwords, certificates file names, certificates passwords, and members’ contact info on icq, goal, yahoo, msn, and skype.
Not like most boards, Maza requires its members to generate a certificates and a corresponding password used together with a username and password to log into the discussion board. This extra safety creates a safer authentication the place solely those that have the correct certificates can log in.
Maza members’ certificates passwords had been additionally uncovered on this leak however not the certificates themselves.
Whereas not all fields contained contact data, a few of the accounts listed ICQ accounts, that are generally used to speak with different menace actors, making this priceless info for regulation enforcement.
Russian-speaking hacker boards underneath assault
Maza shouldn’t be the one Russian-speaking hacker discussion board focused in latest assaults.
The one that shared the Maza leak with BleepingComputer final evening additionally shared screenshots of posts made to Verified, Dread, and Club2Crd about latest assaults on their boards.
Based on FlashPoint, the ‘Verified’ cybercrime group was forcefully taken over on February fifteenth by unknown operators who claimed to take advantage of a vulnerability to take management of the positioning.
The screenshot shared with BleepingComputer is for a put up the place the brand new operator explains how they took over the boards and their plans for the positioning.
A day later, ‘mak,’ a workers member of the ‘Club2Crd’ carding and cybercrime discussion board, introduced that his Club2Crd account had been hacked to carry out scams on the positioning and steal cash from different members.
“Moreover, one of many oldest super-moderators of the mid-tier discussion board Club2Crd “mak” skilled a whole account takeover ensuing within the look of the a number of new rip-off companies and lowering belief in cybercrime communities,” Kremez defined to BleepingComputer.
Lastly, the Reddit-like ‘Dread’ darkish web page skilled assaults in February across the identical time that has led them to institute new protecting measures to forestall future cyberattacks.
It’s unknown if the one who contacted BleepingComputer is the one who attacked these boards or is just a member of all of them.
Nevertheless, these assaults illustrate that nobody is secure from cyberattacks, together with the hackers themselves.