As reported, Raidforums – the world’s largest forum for hackers – was shut down at the end of February 2022. And now, the details of this incident have been published.
Accordingly, US law enforcement agencies have cooperated with Europol and a number of countries to carry out an operation called Operation TOURNIQUET to take down Raidforums. The domain name of this forum has been seized.
The administrator of Raidforums and two accomplices have been arrested, the infrastructure of this illegal forum is currently under the control of law enforcement.
The administrator and founder of Raidforums is Portuguese Diogo Santos Coelho, also known as Omnipotent. He was arrested in the United Kingdom on January 31, 2022 and faces criminal charges. Since his arrest, Omnipotent has been detained pending extradition proceedings.
Recently, the US Department of Justice announced that Omnipotent was only 21 years old, which means that when he founded Raidforums in 2015, he was only 14 years old. Three Raidforums hosting domains including raidforums.com, rf.ws and raid.lol have all been seized.
Authorities seized Raidforums’ infrastructure and domain name because the forum was a place where hackers carried out illegal trade in stolen data.
In a separate report, Europol said Raidforums has more than 500,000 users and is considered one of the largest hacking forums in the world. The US Department of Justice shared that more than 10 billion individual records retrieved from hundreds of stolen databases have been sold on Raidforums.
The people who maintain the operation of Raidforums are accused of acting as administrators, participating in money laundering, stealing and uploading data online and buying and selling stolen information.
Omnipotent allegedly controlled Raidforums from January 1, 2015 with the help of several other administrators. This group makes money by charging for different membership ranks, selling access to VIP areas of the forum…
When accessing Raidforums, users will be redirected to the login page and asked to enter their username and password. When the user does so, they receive a message, the account or password is incorrect and do not allow the next operation.
Meanwhile, the security community spread information that Jaw – the administrator of this forum has announced that the domain raidforums.com has been seized and will move to a new domain. At the same time, Jaw also warned users to change their passwords and delete all access logs.
However, when users access the new address, they only see the message that this is the backup domain of Raidforums only, no other content.
Raidforums was established in 2015, used by many hackers to share, buy and sell data obtained after hacking the network. This is where many security incidents such as selling Facebook account information or student profiles of Vietnamese people are discovered.
Previously, Raidforums was taken offline since January 30 and only resumed on February 12.
(Refer to Quantrimang)