Last updated 1 week ago
In October 2025, a reincarnation of the hacking forum BreachForums was taken offline by a coalition of law enforcement agencies. Prior to the takedown, the site experienced a data breach that exposed 672,247 unique email addresses across all tables, including forum posts and private messages. The users table alone contained 324,000 unique email addresses, usernames, and Argon2 password hashes. This incident highlights the risks associated with hacking forums themselves becoming targets of data breaches, exposing sensitive user information.
The site itself suffered a data breach that exposed email addresses across forum posts and private messages.
Security controls for user data protection on the platform failed, allowing unauthorized access to sensitive information. Recommendations include implementing stronger access controls, regular security audits, and encryption of sensitive data at rest and in transit, even for platforms that may themselves be involved in illicit activities.
Company
Industry
Disclosed
Records Affected
Attack Vector
Industry
Attack Vector