Security news aggregator

Latest coverage for Forums

Stay updated on the latest discussions and trends in information security across various forums with our comprehensive coverage.

1 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Forums are online discussion spaces where users post questions, answers, files, and messages organized by topic. In security, the term can describe legitimate professional communities, technical support boards, and underground marketplaces or criminal discussion sites. Their content may include vulnerability research, configuration advice, leaked credentials, stolen data, exploit code, or offers of illicit services.

Forums are relevant to security because posts and attachments can expose users to phishing, malware, malicious links, or accidental disclosure of sensitive information. Poor authentication, access control, moderation, or logging can also make a forum itself an attack surface. Defenders may monitor relevant public and restricted forums as a source of threat intelligence, while treating unverified claims and downloaded material as potentially hostile. Security teams should validate vulnerability reports, avoid interacting with criminal infrastructure unnecessarily, preserve material lawfully for investigation, and account for privacy and legal constraints when collecting forum data.

Showing 1 most recent headlines Filtered view
Krebs on Security 4 years, 5 months ago

Wazawaka Goes Waka Waka

In January, KrebsOnSecurity examined clues left behind by "Wazawaka," the hacker handle chosen by a major ransomware criminal in the Russian-speaking cybercrime scene. Wazawaka has since "lost his mind" according to his erstwhile colleagues, creating a Twitter account to drop exploit code for a widely-used virtual private networking (VPN) appliance, and publishing bizarre selfie videos taunting security researchers and journalists. In last month's story, we explored clues that led from Wazawaka's multitude of monikers, email addresses, and passwords to a 30-something father in Abakan, Russia named Mikhail Pavlovich Matveev. This post concerns itself with the other half of Wazawaka's identities not mentioned in the first story, such as how Wazawaka also ran the Babuk ransomware affiliate program, and later became "Orange," the founder of the ransomware-focused Dark Web forum known as "RAMP."