Breachforums Displays Message About Shutdown, Cites Mybb 0day Flaw

BreachForums posts a PGP-signed connection explaining nan abrupt April 2025 shutdown. Admins mention MyBB 0day vulnerability impacting nan site, scheme return, contradict seizure, and pass of clones.

In early April 2025, nan well-known cybercrime and information breach forum BreachForums vanished from nan net without explanation. The forum, administered and owned by nan hacker group ShinyHunters, went offline without immoderate farewell statement aliases clarification, triggering wide speculation astir a imaginable rule enforcement seizure.

Despite these concerns, DNS records for BreachForums remained unchanged, showing nan original nameservers astatine DDoS-Guard, not nan emblematic Cloudflare nameservers seen erstwhile nan FBI seizes criminal infrastructure. This consistency hinted that nan tract had not fallen into nan hands of authorities but near galore questions unanswered.

BreachForums Plans to Return

Earlier coming (April 28, 2025), visitors to Breachforums.st person been met pinch a caller development: a elaborate connection posted connected nan homepage, allegedly from nan forum’s administration, signed pinch a PGP key.

According to nan statement, nan administrators unopen down operations aft confirming nan beingness of a MyBB 0day vulnerability that near nan forum exposed to infiltration attempts by rule enforcement agencies.

It is worthy noting that successful June 2023, erstwhile BreachForums was revived nether ShinyHunters’ control, it suffered a information breach. The forum administrator attributed nan incident to a MyBB 0day vulnerability, which led to nan leak of individual specifications belonging to complete 4,000 members.

However, successful nan latest update, nan administrators claimed they acted swiftly erstwhile they received reliable accusation astir nan information consequence done trusted contacts. They initiated an incident consequence protocol, unopen down infrastructure, and conducted an audit of their systems.

Their findings suggested that though nan forum package was vulnerable, nan infrastructure had not been compromised and nary information had been stolen. The connection besides apologized to unit and users for nan extended silence, citing operational information arsenic nan apical privilege during nan crisis. BreachForums announced that activity is underway connected a complete rewrite of nan forum backend to forestall early vulnerabilities.

Additionally, nan connection warned users against engaging pinch various BreachForums clones that person surfaced online, suggesting that these are apt rule enforcement honeypots designed to lure and place cyber criminals. The administrators emphasized that nary arrests had taken spot and that nan original squad remained intact.

Screenshot from nan BreachForums’ homepage (Image credit: Hackread.com)

The abrupt disappearance and arsenic abrupt reappearance of BreachForums person raised further concerns wrong cybercrime circles. While nan operators insist nan level remained secure, nan revelation of a zero-day vulnerability successful nan forum package raises caller questions astir nan operational risks associated pinch underground forums.

ShinyHunters, nan hacker group tied to nan forum’s ownership, has been linked to respective high-profile information breaches complete nan past fewer years, which places BreachForums nether changeless scrutiny by rule enforcement agencies worldwide.

The business is apt to create arsenic cybersecurity researchers, rule enforcement, and threat actors respond to nan forum’s unexpected return. Until then, BreachForums’ early remains uncertain.