The popular crime forum Nulled.io pwned by hackers

[steven36]

The popular crime forum Nulled.io has suffered a serious security breach that exposed personal details of more than 500K users and their activities.

 

 

Nulled.io is a popular crime forum with roughly 500,000 users that but and sell any kind of product and services and share information regarding illegal practices.

 

According to the Risk Based Security, last week the Nulled.io forum has suffered a security breached that exposed details of its members and more than 800,000 personal messages exchanged by the users of the hacker forum.

 

“Last week a well known “hacker” forum became victim to the fast growing list of over 1,076 data breaches that have occurred so far in 2016. The Nulled.IO forum was compromised and data was leaked on May 6th consisting of a 1.3GB tar.gz compressed archive which when expanded is a 9.45GB SQL file named db.sql.” reported Risk Based Security.

 

On May 6, the attackers leaked a 1.3Gb compressed archive containing a 9.45Gb database that included the details of more than 536,000 user accounts (usernames, hashed passwords, registration dates, email addresses, and IP addresses).

 

The popular cyber security expert Troy Hunt has already added the stolen account credentials to the Have I Been Pwned service.

 

 

Quote

 

New breach: Nulled cracking forum had 599k email addresses exposed last week. 25% were already in @haveibeenpwned https://t.co/LGaAnj1hUA

— Have I been pwned? (@haveibeenpwned) 9 maggio 2016

 

The hackers also leaked thousands of purchase records and invoices.

 

“If law enforcement obtains this information, (which no doubt they already have) it can be used to filter out any “suspects” under investigation for possibly conducting illegal activities via the forums. With this being such a comprehensive dump of data it offers up a very good set of information for matching a member ID to the attached invoices, transactions and other content such as member messages and posts.” continues the post.

The experts that analyzed the archive noticed the presence of a table containing personal details of VIP users.

 

The archive includes detailed information about transactions completed by VIP users, including their PayPal email addresses.

 

“Further we find API credentials for 3 payment gateways (Paypal, Bitcoin, Paymentwall) as well as 907,162 authentication logs with geolocation data, member id and ip addresses, and 256 user donation records that are able to be matched to the user with member id.” continues the post.

 

The experts from Risk Based Security several email addresses belonging to government across the world, including United States, Jordan, and Brazil.

 

At the time I was writing it is still unknown who is behind the attack neither how the hackers breached the Nulled.io crime forum that is powered by the IP.Board forum framework. Experts speculate that the attackers might have exploited a flaw in the IP.Board forum software.

 

Experts at Sucuri reported multiple attacks against IP.Board forums leveraging on the ImageMagick flaw.

 

Quote

In addtiion to vBulletin, seeing a few #ImageTragick attempts against “app=members&module=profile&section=photo&do=save” on IP.Board

— Daniel Cid (@danielcid) 9 maggio 2016

 

Daniel Cid, founder and CTO of Web security firm Sucuri, noted last week that IP.Board forums had been targeted in attacks exploiting a recently disclosed ImageMagick flaw.

Currently the Nulled.io crime forum is down.

The Source

[knowledge-Spammer]

Nulled  are bad guys  so  if u are bad to good people bad things happen to  bad people

[Xionic]

6 hours ago, knowledge said:

Nulled  are bad guys  so  if u are bad to good people bad things happen to  bad people

it's not about good and bad,This year is the worst year for internet users as more than 1,076 breach has happend in the current first half..most of the them made through simple SQL injection using "Special Private Dorks"..And im afraid that even this forum isn't immune enough

[knowledge-Spammer]

5 hours ago, Xionic said:

it's not about good and bad,This year is the worst year for internet users as more than 1,076 breach has happend in the current first half..most of the them made through simple SQL injection using "Special Private Dorks"..And im afraid that even this forum isn't immune enough

u are right

[knowledge-Spammer]

it seems this site maynot be back as it needs money

Nulled.cr Unscheduled Maintenance

As you're all aware the website has gone down for unschedules maintenance. What many of you might not know is that in recent events our database has been breached and part of our data deleted.

Now, the data might be recoverable but it's an expensive service to recover over 40TB of data from posts to attachements to other content we had stored on the server. To that end we'd like to request all our users to donate and help us rebuild the community.
As soon as we get everything back we wil force a full password reset and force 2FA on all upgraded members to prevent abuse to their accounts in future occasions.

We're currently making a web page to put on explaining the same (and you'll also find a paypal address there) at...............
But for the time being we only have a BTC address ready: 1BBBBBBBXkhHoT6oAE93LoriLjYsC49Xgu

Our current rewards for donating are as follows:
0   - $20 BTC - a +10 reputation boost
20 - $50 BTC - an award to show your support
$100 - $250 BTC - A special usergroup to show your extreme support
$250 - $500 BTC - Your name in bold
$500 - $1000 BTC - Your name in any color you want
$1000+ BTC - Your own usergroup (limit of 1)
 

[Rastus_BoJangles_Johnson]

18 hours ago, Xionic said:

And im afraid that even this forum isn't immune enough

So true, I have been thinking about things lately. Specifically what I was told about a couple of things going on around here that we aren't supposed to talk about. And to be honest, it doesn't add up. I would be very careful about what I post on this forum. Have a great day!

 

[knowledge-Spammer]

15 minutes ago, Rastus_BoJangles_Johnson said:

So true, I have been thinking about things lately. Specifically what I was told about a couple of things going on around here that we aren't supposed to talk about. And to be honest, it doesn't add up. I would be very careful about what I post on this forum. Have a great day!

 

we aren't supposed to talk about. what ?

[Rastus_BoJangles_Johnson]

2 minutes ago, knowledge said:

we aren't supposed to talk about. what ?

Sorry I gave my word. I never break a promise.

[Reefa]

Look guys there ain't no secret every-ones aware of it but seriously who cares the clone post was hidden to prevent people logging in...If you feel the need to discuss such a ridiculously pointless issue then please do it via PM.....

[DKT27]

3 hours ago, Rastus_BoJangles_Johnson said:

So true, I have been thinking about things lately. Specifically what I was told about a couple of things going on around here that we aren't supposed to talk about. And to be honest, it doesn't add up. I would be very careful about what I post on this forum. Have a great day!

 

 

Depends on whether the source of information is from a good member with good intentions or a banned member with bad intentions. Like Reefa said, almost everything is a non-secret on our forums. Even if something is secret, there is no secret to be worried about and it's most likely kept secret only for the benefit of the forums and the members. Also, you can talk almost about anything reasonable in a good manner / behavior on our forums as long as it does not involve a guide to hack things, including our forums.