Source URL: https://krebsonsecurity.com/2025/02/whos-behind-the-seized-forums-cracked-nulled/
Source: Krebs on Security
Title: Who’s Behind the Seized Forums ‘Cracked’ & ‘Nulled’?
Feedly Summary: The FBI joined authorities across Europe last week in seizing domain names for Cracked and Nulled, English-language cybercrime forums with millions of users that trafficked in stolen data, hacking tools and malware. An investigation into the history of these communities shows their apparent co-founders quite openly operate an Internet service provider and a pair of e-commerce platforms catering to buyers and sellers on both forums.
AI Summary and Description: Yes
Summary: The text discusses a significant law enforcement operation dubbed “Operation Talent,” where the FBI and European authorities seized several domains linked to cybercrime forums that specialized in stolen data, hacking tools, and malware. This operation reveals insights into the operational structure of these forums, highlighting the connections among their founders and associated businesses, raising important implications for information security professionals regarding monitoring and mitigating such threats.
Detailed Description:
– The FBI, in collaboration with European authorities, executed “Operation Talent,” targeting the Cracked and Nulled cybercrime forums known for their extensive user bases and the trafficking of stolen data and hacking tools.
– Major seizures included:
– Domain names for the Cracked forum, which had over four million users since its inception in 2018.
– Domains associated with Sellix, a payment processor for the Cracked forum.
– Domain names for anonymity services linked to the forums, including StarkRDP and rdp.sh, which allowed users to rent virtual servers.
– Key individuals involved:
– 1337 Services GmbH, which was identified as the owner of the RDP services, with its co-founders identified as Florian Marzahl and Finn Alexander Grimpe.
– Finn Grimpe (a.k.a. “Finndev”), who was linked with multiple cybercrime forums and had registered using various emails tied to criminal activities.
– The nature of the seized forums was elaborated upon:
– Cracked specialized in selling stolen login credentials and hacking tools since 2016 and had over five million users on Nulled.
– Past security breaches had exposed private messages within these forums, suggesting internal illicit activities and complicity among individual users.
– The investigation’s implications:
– Highlights the interconnections and operations of cybercrime forums.
– Raises awareness for security professionals regarding vulnerabilities and potential measures to monitor and combat the activities stemming from such forums.
– Reinforces the need for organizations to maintain stringent access controls and continuous monitoring to prevent leaks and unauthorized access to sensitive information.
**Key Insights for Professionals:**
– Understanding the criminal landscape facilitated by such forums can aid in developing better detection and prevention strategies against cyber threats.
– This operation exemplifies the collaborative efforts between law enforcement agencies in different countries to combat cybercrime.
– Security professionals must ensure robust incident response strategies to address potential breaches emanating from similar cybercriminal networks.