Police Shut Down RaidForums Hackers

Uploaded on 2022-04-20 in TECHNOLOGY--Hackers, GOVERNMENT-Law Enforcement, FREE TO VIEW

One of the world’s most notorious DarkNet hacking marketplaces, RaidForums, has been shut down and its infrastructure seized in a major cross-border law enforcement operation. The RaidForums hacker forum is used by cyber criminals to primarily buy and sell stolen databases.

RaidForums' UK-based founder Diogo Santos Coelho has been arrested in the UK and could be extradited to the US on charges of conspiracy, access device fraud, and aggravated identify theft.

Operation TOURNIQUET, which was coordinated by Europol in support of the independent investigations of the US, UK, Sweden, Portugal and Romania, also led to the arrest of the RaidForums’ administrator and two of his accomplices.

The operation was conducted after a year of collaborative planning and information-sharing between investigators and officers across the different police forces within the Joint Cybercrime Action Taskforce framework. The information sharing system enabled security forces to paint a clear picture and establish the roles of different actors within the marketplace, such as administrators, money launderers, users, sellers, and buyers.

RaidForums was launched in 2015 and is believed to be one of the world’s largest hacking forums, boasting more than 500,000 users. Everything from credit card details to bank account numbers to usernames and passwords is sold on the forum.

One such example for sale on the site was 40 million user records stolen from popular mobile app Wishbone and the personal details of hundreds of thousands of individuals who tested for Covid-19 in 2020.

The Head of Europol’s European Cybercrime Centre, Edvardas Šileris, commented. “Disruption has always been a key technique in operating against threat actors online, so targeting forums that host huge amounts of stolen data keeps criminals on their toes. Europol will continue working with its international partners to make cybercrime harder, and riskier, to commit.”

Europol have begun a major new operation designed to crack down on Russian oligarchs and businesses attempting to circumvent sanctions in the wake of the Russian invasion of Ukraine. Operation Oscar will run for at least a year as an umbrella initiative that will feature many separate investigations, Europol explained. The policing organisation’s European Financial and Economic Crime Centre will work to exchange information and intelligence with partners and provide operational support in financial crime investigations.

RaidForums gained prominence in criminal circles by offering access to high-profile database leaks, which could be used to enable crimes like fraud.

According to the threat intelligence firm Recorded Future, the site contained more than 530,000 registered members and was a powerful tool among low to mid-level cyber-criminals. The compromised data, which hackers bought and sold, included information stolen from UK companies, some of which related to credit cards, bank accounts, usernames and passwords.

Europol:     Recorded Future:    Oodaloop:     Infosecurity Magazine:      ZDNet:      The Record

You Might Also Read: 

What Goes On In The Dark Web?:

 

« Microsoft Removes Domains Used For Cyber Attacks On Ukraine
Software Industry Mergers and Acquisitions 2022 »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

Shavlik Protect

Shavlik Protect

Shavlik Protect is an easy-to-use security software solution that discovers missing patches and deploys them to the entire organization.

Software Testing News

Software Testing News

Software Testing News provides the latest news in the industry; from the most up-to-date reports in web security to the latest testing tool that can help you perform better.

L J Kushner & Associates

L J Kushner & Associates

L.J. Kushner is a leading Information Security recruiting firm.

Onspring

Onspring

Onspring is the cloud-based platform of choice for governance, risk and compliance (GRC) teams and business operations experts across multiple industries.

Preempt Security

Preempt Security

The Preempt Platform delivers adaptive threat prevention that continuously preempts threats based on identity, behavior and risk.

4Stop

4Stop

4Stop is a global KYC, compliance and anti-fraud risk management company.

Assertion

Assertion

Assertion secures your collaboration (UC/CC) systems from cyber risks. Enforcing the right set of controls and monitoring them continually brings down risk to acceptable levels.

SITA

SITA

SITA is a multinational information technology company providing IT and telecommunication services to the air transport industry including vulnerability assessments and managed security services.

CyberSaint Security

CyberSaint Security

CyberSaint’s CyberStrong Platform empowers organizations to implement automated, intelligent cybersecurity compliance and risk management.

PeckShield

PeckShield

PeckShield is a blockchain security company which aims to elevate the security, privacy, and usability of entire blockchain ecosystem by offering top-notch, industry-leading services and products.

CyberMDX

CyberMDX

CyberMDX delivers proactive security built for hospital devices. 360° visibility, insight, and protection for all connected hospital technologies.

Sec-Ops

Sec-Ops

Sec-Ops is a forward thinking cyber security company, formed by a group of security enthusiasts with years of experience and backgrounds in the technology and the government industries.

Route1

Route1

Route1 is an advanced provider of secure data intelligence solutions to drive your business forward.

Polestar Industrial IT

Polestar Industrial IT

Polestar work on both sides of the IT & OT divide. Network, Data & Asset Security is our priority. Polestar installations are robust and resilient and comply with the appropriate security.

Papua New Guinea National Cyber Security Centre (PNG NCSC)

Papua New Guinea National Cyber Security Centre (PNG NCSC)

PNG NCSC is a jointly funded initiative enabling PNG to benefit with the most advanced cyber protection of its critical information and communications technology infrastructure.

Proaxiom

Proaxiom

Proaxiom are focused on erasing cyber driven panic paralysis for Small and Medium Enterprises through brilliant cyber technologies which drive productivity and support growth.