Security news aggregator

Latest coverage for Forums

Stay updated on the latest discussions and trends in information security across various forums with our comprehensive coverage.

7 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Forums are online discussion spaces where users post questions, answers, files, and messages organized by topic. In security, the term can describe legitimate professional communities, technical support boards, and underground marketplaces or criminal discussion sites. Their content may include vulnerability research, configuration advice, leaked credentials, stolen data, exploit code, or offers of illicit services.

Forums are relevant to security because posts and attachments can expose users to phishing, malware, malicious links, or accidental disclosure of sensitive information. Poor authentication, access control, moderation, or logging can also make a forum itself an attack surface. Defenders may monitor relevant public and restricted forums as a source of threat intelligence, while treating unverified claims and downloaded material as potentially hostile. Security teams should validate vulnerability reports, avoid interacting with criminal infrastructure unnecessarily, preserve material lawfully for investigation, and account for privacy and legal constraints when collecting forum data.

Showing 7 most recent headlines Filtered view
Bank Info Security 2 years, 2 months ago

FBI Seizes Criminal Site BreachForums

Website of BreachForums Administrator 'Baphomet' Also Appears to Be DownAn international law enforcement operation shut down BreachForums, a criminal forum where hackers posted and sold the contents of hacked databases. The website of the criminal forum in its clear and dark web domains displays a seizure notice stating that it is "under the control of the FBI."

Krebs on Security 2 years, 2 months ago

How Did Authorities Identify the Alleged Lockbit Boss?

Last week, the United States joined the U.K. and Australia in sanctioning and charging a Russian man named Dmitry Yuryevich Khoroshev as the leader of the infamous LockBit ransomware group. LockBit's leader "LockBitSupp" claims the feds named the wrong guy, saying the charges don't explain how they connected him to Khoroshev. This post examines the activities of Khoroshev's many alter egos on the cybercrime forums, and tracks the career of a gifted malware author who has written and sold malicious code for the past 14 years.