BreachForums, a popular cybercrime forum, has reestablished its community following the arrest of its former admin, Conor Brian Fitzpatrick, also known as ‘Pompompurin’. In a recent letter posted on Telegram by an individual using the alias Baphomet, the legitimacy of the revived forum was reaffirmed and clarification was provided regarding the discrediting attempts.
According to Baphomet, the old BreachForums domains were taken over shortly after Pompompurin’s arrest and are now under the control of a different group. Baphomet made it clear that neither they nor Pompompurin have access to these domains at present. They suggested that the timing of the disinformation campaign was suspicious, implying a deliberate attempt to undermine the credibility of the revived community.
Baphomet explained that the situation has changed since the old PGP-signed message was sent, where they stated that the forum would not be returning. They admitted that they were worried about a situation similar to another forum where users could be tricked into entering their information or being targeted by a honeypot. However, recent collaboration with an individual named Shiny prompted the revival of BreachForums.
While the revival of BreachForums presents a promising opportunity for its loyal users, Baphomet cautioned against an ongoing campaign against the community and a disinformation campaign without providing specific details.
Following Pompompurin’s arrest, BreachForums shut down, leaving its 336,800 members to seek alternative platforms. However, efforts to revive the forum yielded little results, causing mixed reactions among users who migrated to other cybercrime forums. Exploit, one of these alternative platforms, saw disgruntled members expressing their dissatisfaction with an influx of users from BreachForums.
In March 2022, a Telegram group called “Breach Forums,” managed by Baphomet, gained nearly 20,000 subscribers, indicating a strong interest in the revived community. Additionally, a hacker claiming to be a former member of Anonymous announced the creation of an alternative forum called kkksecforum, although the website is currently inaccessible. Another platform called Pwnedforums gained attention, with some members publicly sharing doxed data.
While these alternative platforms emerged, concerns were raised about their legitimacy. Pwnedforums, for example, faced accusations of being a DDoS honeytrap. In response, an individual named ‘Sinistery’, claiming to be a Pwnedforums admin, assured users that the platform was independent and aimed to foster open discussion and the exchange of hacking knowledge.
Around the time of BreachForums’ closure, law enforcement officials in the UK arrested a network of cybercriminals engaged in DDoS-for-hire schemes. This crackdown was part of a larger effort to combat cybercrime. Additionally, German police conducted a raid on FlyHosting, a web hosting company known for providing services to cybercriminals involved in DDoS attacks and malware distribution.
In conclusion, the revived BreachForums has clarified its legitimacy in the face of discrediting attempts. While alternative platforms have emerged, such as kkksecforum and Pwnedforums, concerns about their legitimacy persist. Law enforcement agencies continue to crack down on cybercrime, as evidenced by recent arrests and raids. Users of these platforms should exercise caution and be aware of the risks associated with participating in cybercriminal activities.