Legislation enforcement companies in america and France have seized management of domains linked to the infamous BreachForums hacking discussion board, generally used for the leaking of stolen knowledge, and the sale of hacked credentials.
Nevertheless, observers are warning the takedown – though worthy and laudable – could also be extra symbolic than remaining, as a model of BreachForums on the darkish internet stays lively.
In case you go to breachforums.hn right now you’ll be greeted by an animated seizure announcement, that includes the logos of america Division of Justice, FBI, France’s BL2C cybercrime unit, and Paris Prosecutor’s Workplace.
Fairly than the standard messageboard the place cybercriminals traded their wares, the positioning not factors to a specialist subdomain of the web site of the Web Criticism Middle (IC3), inviting victims and members of the hacking boards to depart info that might help in future crackdowns.
Sadly, for everybody who is not a cybercriminal – the underlying Tor-based leak website on the darkish internet stays lively and might proceed for use to reveal delicate knowledge.
Sadly additionally it is the case that there have been no confirmed arrests of BreachForums directors introduced publicly in co-ordination with the web site seizure, though it’s – after all – all the time doable that the backup knowledge seized may include logs and metadata that might present clues as to the identities of a number of the discussion board’s individuals.
A bullish assertion issued by the Scattered LAPSUS$ Hunters hacking collective confirmed that the authorities had seized management of BreachForums’ domains and backend servers, alongside backups of its databases stretching again to 2023.
Nevertheless, the group’s assertion went on to assert that the seizure wouldn’t influence its risk to leak one billion data belonging to Salesforce prospects, scheduled for 23:59 EST tonight, 10 October 2025.
On the darkish internet, Scattered LAPSUS$ Hunters has listed scores of organisations whose Salesforce cases have been breached in current months, together with Adidas, Cartier, Chanel, Cisco, FedEx, IKEA, McDonald’s, Qantas Airways, Toyota, and Walgreens.
For its half, Salesforce has reportedly confirmed that it’s going to not pay a ransom.
What is not in any doubt is that the authorities have been enjoying whack-a-mole for a while with hacking message boards like BreachForums. Over the previous few years, legislation enforcement companies have repeatedly tried – and typically succeeded – in disrupting BreachForums and its predecessors. In April 2022, as an illustration, the US Division of Justice shut down RaidForums and seized its area, paving the best way for BreachForums to emerge.
In March 2023, the discussion board’s founder Conor “Pompompurin” Fitzpatrick was arrested, and the positioning quickly taken offline.
Regardless of these and different takedowns in its historical past, BreachForums has repeatedly resurfaced underneath completely different domains or backends – highlighting simply how resilient underground cybercrime infrastructure may be.
