By Kim Zetter
May 19, 2010
A German cybercrime forum was hacked by attackers who have exposed the
underground dealings of the criminal denizens. The hackers snagged the
database containing what appears to be all the private correspondence of
the forum members, and posted it to the web.
The hackers also posted information on the IP addresses forum members
used when they signed up for membership, noting that most of the
administrators and moderators on the site didn't use a proxy to access
it. They also posted usernames, e-mail addresses and some cracked
passwords of members, who number 5,000. The data was posted to the
RapidShare file-trading site.
Here we go. Some crazy combination of username:password:plain:mail.
I hope you guys dont mind if we did not crack all of them. Passwords
are stored as sha1($username.$pass). Feel free to bruteforce the
The hack was first reported by Brian Krebs.
Carders.cc was hacked through a poorly secured web server, according to
the attackers, who disclosed their method and reason for hacking the
forum in an e-zine they published with one of the data files:
Best Selling Security Books and More!
Shop InfoSec News