• Hacking News
    • Leaks
    • WikiLeaks
    • Anonymous
  • Tech
    • Android
    • Apple News
    • BlackBerry
    • Google News
    • Microsoft
    • Motorola
    • Nokia
    • Samsung
    • 3D
  • Cyber Crime
    • Phishing Scam
  • How To
  • Cyber Events
    • Censorship
    • Cyber Attacks
  • Security
    • Malware
  • Surveillance
    • Drones
    • NSA
    • Privacy
  • Explore
    • Gaming
    • Science
    • Viral
HackRead
  • December 6th, 2019
  • Home
  • About Us
  • Team
  • Advertise
  • Submit News
  • Privacy Policy
  • Contact Us
HackRead
  • Hacking News
    • Leaks
    • WikiLeaks
    • Anonymous
  • Tech
    • Android
    • Apple News
    • BlackBerry
    • Google News
    • Microsoft
    • Motorola
    • Nokia
    • Samsung
    • 3D
  • Cyber Crime
    • Phishing Scam
  • How To
  • Cyber Events
    • Censorship
    • Cyber Attacks
  • Security
    • Malware
  • Surveillance
    • Drones
    • NSA
    • Privacy
  • Explore
    • Gaming
    • Science
    • Viral
  • Follow us
    • Facebook
    • Twitter
    • Google+
    • Linkedin
    • Youtube
Home » Hacking News » Nulled.IO Hacking Forum Hacked, Trove of Data Stolen

Nulled.IO Hacking Forum Hacked, Trove of Data Stolen

May 17th, 2016 Waqas Cyber Crime, Hacking News, Security 0 comments
Nulled.IO Hacking Forum Hacked, Trove of Data Stolen
Share on FacebookShare on Twitter

Nulled.io, one of the largest buying and selling forum for hacked content has been hacked and almost everything has been stolen!

The year 2016 has been hard on internet users and websites alike since more than 1,076 data breaches have occurred. The latest on this front is that the well-known Nulled.IO, a popular forum for hackers which has been hacked and its data leaked. There are around 473,700 registered users of this forum. The forum offers users the perfect platform for selling and buying leaked content as well as hacked passwords, usernames, software cracks and nulled software. It is indeed ironic that a website that actually facilitates the sharing of hacked content has itself become the victim of a hack attack.

The hack attack occurred on 6th May. The data consisted of 1.3GB tar.gz compressed archive. When expanded, this dataset became a 9.45GB SQL file dubbed as db.sql. Actually, the forum runs the IP.Board community that is called IP.b or IPb as well as the IP.Nexus Setup and some of the IPb plugins for its marketing on the forum and other VIP forums.

nulled-io-the-forum-shielding-hackers-has-been-hacked-3

As of now, we cannot confirm how the breach actually occurred since to date, there have been more than 4,500 vulnerabilities in these plugins with IP.Board possessing 185 vulnerabilities in total. It, however, is noticeable that the last user to login to this forum was on 5th May at 10:12:49. This must have provided the hacker adequate time to conduct the breach. But, with this information, one cannot deduce who could be the perpetrator of this attack.

The analysis of the leaked data revealed that it was a complete MYSQL database that has been dubbed as nulledforumsdoctr, which indicates that it contains the forum’s entire database. It is also called nulled.cr. In total, the database comprises of 536,064 user accounts. There are around 800,593 personal messages of the forum users, 12,600 invoices, 5,582 purchase records including donation records.

All the details of compromised user accounts have been hacked including usernames, encrypted passwords, email addresses, IP address, and registration dates. There are several other tables also included in the leaked database, which includes transactions for VIP access payments, user IDs, payment methods, dates, PayPal emails and amount paid. Moreover, the leaked data also includes 2.2 million posts and miscellaneous content related to the forum, which hints that private content, URLs and another information present on the VIP forum is now open to public access. This is going to severely affect the business model of the forum.

The API credentials of three payment platforms are involved in the leaked data namely PayPal, Paymentwall and Bitcoin. Also, the dumped data includes 907,162 authentication logs containing geolocation data, IP addresses, and member IDs. There are more than 256 records of a donation from users, which were successfully matched with the member ID of the user.

Risk Based Security did an analysis revealing which domains and email platforms users had linked with this service:

nulled-io-the-forum-shielding-hackers-has-been-hacked

The negative aspect of this data leak is that forum like Nulled.IO contain massive records of users and when the data is hacked and leaked those members who want to remain anonymous get exposed to public and law enforcement. The consequences could be drastic for these users.

Did you enjoy reading this article? Like our page on Facebook and follow us on Twitter.

  • Tags
  • Cyber Crime
  • Dark Net
  • Data
  • hacking
  • internet
  • LEAKS
  • security
Facebook Twitter Google+ LinkedIn Pinterest
Previous article PornHub Gets Hacked Days After Launching Bug Bounty Program
Next article Woman Follows GPS, Goes Straight into Lake
Waqas

Waqas

I am a UK-based cybersecurity journalist with a passion for covering the latest happenings in cyber security and tech world. I am also into gaming, reading and investigative journalism.

Related Posts
5 things you should never do when using anonymous operating systems

5 things you should never do when using anonymous operating systems

Chinese DDoS tool Great Cannon resurfaces to target Hong Kong protestors

Chinese DDoS tool Great Cannon resurfaces to target Hong Kong protestors

Flawed Implementation of RCS Standard putting data of millions at risk

Flawed Implementation of RCS Standard putting data of millions at risk

Newsletter

Get the best stories straight into your inbox!



Don’t worry, we don’t spam

LATEST POSTS
5 things you should never do when using anonymous operating systems
Security

5 things you should never do when using anonymous operating systems

194
Israeli firm buys Private Internet Access (PIA) VPN raising privacy concerns
Surveillance

Israeli firm buys Private Internet Access (PIA) VPN raising privacy concerns

4365
Chinese DDoS tool Great Cannon resurfaces to target Hong Kong protestors
Cyber Attacks

Chinese DDoS tool Great Cannon resurfaces to target Hong Kong protestors

423
Flawed Implementation of RCS Standard putting data of millions at risk
Security

Flawed Implementation of RCS Standard putting data of millions at risk

547

HACKREAD is a News Platform that centers on InfoSec, Cyber Crime, Privacy, Surveillance and Hacking News with full-scale reviews on Social Media Platforms & Technology trends. Founded in 2011, HackRead is based in the United Kingdom.

Follow us