The stolen OGUsers database is available on RaidForums for download.
On 12th May, hackers managed to steal the database of a famous hijacker forum called OGUsers. This forum is used by hackers and online account hijackers, which means that the hackers have now been given a taste of their own medicine.
The database contained around 112,988 user accounts and the stolen information included hashed passwords, email IDs, IP addresses, and confidential forum messages.
The site admin initially claimed that the information has been wiped out due to a failure in the hard drive and users were forced to use a backup, however, the data was later posted on a rival forum of OGUsers called RaidForums and was publicly exposed. Along with the data, Omnipotent, the site admin of RaidForums posted this message:
“On the 12th of May 2019 the forum ogusers.com was breached 112,988 users were affected. I have uploaded the data from this database breach along with their website source files. Their hashing algorithm was the default salted MD5 which surprised me, anyway the website owner has acknowledged data corruption but not a breach so I guess I’m the first to tell you the truth. According to his statement, he didn’t have any recent backups so I guess I will provide one on this thread lmfao.”
Here is a screenshot of the message posted by Omnipotent:
Naturally,OGUser.com’s members are quite concerned since their identities have been revealed. KrebsOnSecurity’s Brain Krebs also acquired a copy of the database. According to Brian Krebs, this incident has generated a feeling of “schadenfreude,” and that it is gratifying to see that the community that specializes in hacker online identities of others has finally been punished.
“Federal and state law enforcement investigators going after SIM swappers are likely to have a field day with this database, and my guess is this leak will fuel even more arrests and charges for those involved,” Krebs wrote.
OGUsers.com is an infamous online hacker forum where people involved in hacking phone numbers to hijack online financial and social media accounts and email addresses of unsuspecting users come together to resell the stolen data for hundreds of thousands of dollars. Most of the buyers are also members of the forum.
When the news of the data hack broke, OGUsers members were quick to respond. Members were anxious as they feared their IDs being exposed and some were concerned that they will be receiving phishing emails in the future. Many of the OGUsers admins turned off self-bans to cover some of the tracks of the users.