Cybercrime Forum Leak Zone Exposes Users’ IP Addresses Publicly
By Editorial Team
A recent discovery by security researchers revealed that Leak Zone, a cybercrime forum known for sharing breached databases and stolen credentials, inadvertently exposed its users’ IP addresses to the public. The exposed data, found in an unprotected Elasticsearch database by researchers at UpGuard, contained over 22 million records with IP addresses and timestamps of user logins, some as recent as June 25.
While the records did not directly link to individual users, the information could potentially be used to identify those who logged into Leak Zone without using anonymization tools. Notably, some records indicated whether users accessed the forum through proxies like VPNs, which could mask their real-world locations.
Leak Zone, which rose to prominence in 2020, offers a wide range of leaked data and illegal services, boasting over 109,000 users. UpGuard reported that 95% of the exposed database entries were related to Leak Zone logins, with the rest tied to AccountBot, a platform selling compromised streaming service accounts.
Despite attempts to reach out to Leak Zone administrators for comment, TechCrunch was unable to establish contact as the forum’s software blocked messages. The reason behind the database exposure remains unclear, with human error or misconfigurations often cited as common causes for such data leaks.
Authorities worldwide have been increasingly cracking down on cybercrime forums for their involvement in facilitating criminal activities like hacking and identity theft. Just recently, Europol announced the arrest of an alleged administrator of XSS.is, a Russian-language cybercrime forum, as part of a broader takedown operation.
As of now, the exposed database is offline, according to UpGuard. The Leak Zone administrators’ awareness of the security lapse or their plans to notify users about the incident remain uncertain.
This incident underscores the ongoing challenges posed by cybercrime and the critical need for robust cybersecurity measures to protect user data and privacy in online forums and platforms.