Hack Forums (often shortened to 'HF') is an

Internet forum An Internet forum, or message board, is an online discussion site where people can hold conversations in the form of posted messages. They differ from chat rooms in that messages are often longer than one line of text, and are at least temporar ...

dedicated to discussions related to

hacker culture The hacker culture is a subculture of individuals who enjoy—often in collective effort—the intellectual challenge of creatively overcoming the limitations of software systems or electronic hardware (mostly digital electronics), to a ...

and

computer security Computer security, cybersecurity (cyber security), or information technology security (IT security) is the protection of computer systems and networks from attack by malicious actors that may result in unauthorized information disclosure, the ...

. The website ranks as the number one website in the " Hacking" category in terms of web-traffic by the analysis company

Alexa Internet Alexa Internet, Inc. was an American web traffic analysis company based in San Francisco. It was a wholly-owned subsidiary of Amazon. Alexa was founded as an independent company in 1996 and acquired by Amazon in 1999 for $250 million in stock. ...

. The website has been widely reported as facilitating online criminal activity, such as the case of Zachary Shames, who was arrested for selling

keylogging Keystroke logging, often referred to as keylogging or keyboard capturing, is the action of recording (logging) the keys struck on a keyboard, typically covertly, so that a person using the keyboard is unaware that their actions are being monitored ...

software on Hack Forums in 2013 which was used to steal personal information.

Security breaches

In June 2011, the

hacktivist In Internet activism, hacktivism, or hactivism (a portmanteau of '' hack'' and '' activism''), is the use of computer-based techniques such as hacking as a form of civil disobedience to promote a political agenda or social change. With roots in h ...

group

LulzSec LulzSec (a contraction for Lulz Security) was a black hat computer hacking group that claimed responsibility for several high profile attacks, including the compromise of user accounts from PlayStation Network in 2011. The group also claimed ...

, as part of a campaign titled "50 days of lulz", breached Hack Forums and released the data they obtained. The leaked data included credentials and personal information of nearly 200,000 registered users. On 27 August 2014, Hack Forums was hacked with a

defacement Defacement or disfigurement may refer to: *Defacement (vandalism), the vandalism of physical objects, like buildings, books, paintings and statues * Website defacement, an attack on a website that changes the visual appearance of the site *Defaceme ...

message by an

Egypt Egypt ( ar, مصر , ), officially the Arab Republic of Egypt, is a transcontinental country spanning the northeast corner of Africa and southwest corner of Asia via a land bridge formed by the Sinai Peninsula. It is bordered by the Mediter ...

ian hacker, using the online handle "Eg-R1z". On 26 July 2016, Hack Forums administrator ("Omniscient") warned its users of a security breach. In an

e-mail Electronic mail (email or e-mail) is a method of exchanging messages ("mail") between people using electronic devices. Email was thus conceived as the electronic ( digital) version of, or counterpart to, mail, at a time when "mail" meant ...

he suggested users to change their passwords and enable 2FA.

Alleged criminal incidents

According to a

press release A press release is an official statement delivered to members of the news media for the purpose of providing information, creating an official statement, or making an announcement directed for public release. Press releases are also considere ...

from the

U.S. Department of Justice The United States Department of Justice (DOJ), also known as the Justice Department, is a federal executive department of the United States government tasked with the enforcement of federal law and administration of justice in the United State ...

, Zachary Shames developed a

keylogger Keystroke logging, often referred to as keylogging or keyboard capturing, is the action of recording (logging) the keys struck on a keyboard, typically covertly, so that a person using the keyboard is unaware that their actions are being monitored ...

in 2013 that allowed users to steal sensitive information, including passwords and banking credentials, from a victim's computer. Shames developed the keylogger known as "Limitless Logger Pro", which was sold for $35 on Hack Forums. On 12 August 2013, hackers used

SSH The Secure Shell Protocol (SSH) is a cryptographic network protocol for operating network services securely over an unsecured network. Its most notable applications are remote login and command-line execution. SSH applications are based on ...

brute-force to mass target

Linux Linux ( or ) is a family of open-source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991, by Linus Torvalds. Linux is typically packaged as a Linux distribution, which ...

systems with weak passwords. The tools used by hackers were then later posted on Hack Forums. On 15 May 2014, the

FBI The Federal Bureau of Investigation (FBI) is the domestic Intelligence agency, intelligence and Security agency, security service of the United States and its principal Federal law enforcement in the United States, federal law enforcement age ...

targeted customers of a popular

Remote Administration Tool In computing, the term remote desktop refers to a software- or operating system feature that allows a personal computer's desktop environment to be run remotely off of one system (usually a PC, but the concept applies equally to a server or a ...

(RAT) called '

Blackshades Blackshades is a malicious trojan horse used by hackers to control infected computers remotely. The malware targets computers using operating systems based on Microsoft Windows. According to US officials, over 500,000 computer systems have been in ...

'. Blackshades RAT was

malware Malware (a portmanteau for ''malicious software'') is any software intentionally designed to cause disruption to a computer, server, client, or computer network, leak private information, gain unauthorized access to information or systems, depri ...

created and sold on Hack Forums. On 14 January 2016, the developer of the ''MegalodonHTTP''

Botnet A botnet is a group of Internet-connected devices, each of which runs one or more bots. Botnets can be used to perform Distributed Denial-of-Service (DDoS) attacks, steal data, send spam, and allow the attacker to access the device and its conn ...

was arrested. MegalodonHTTP included a number of features as "Binary downloading and executing", "Distributed Denial of service (DDoS) attack methods", "Remote Shell", "Antivirus Disabling", "Crypto miner for Bitcoin, Litecoin, Omnicoin and Dogecoin". The malware was sold on Hack Forums. On 22 September 2016, many major websites were forced offline after being hit with “ Mirai”, a

that targeted unsecured Internet of Things (IoT) devices. The source code for Mirai was published on Hack Forums as open-source. In response, on 26 October 2016, Omniscient, the administrator of Hack Forums, removed the DDoS-for-Hire section from the forum permanently. On 21 October 2016, popular websites, including

Twitter Twitter is an online social media and social networking service owned and operated by American company Twitter, Inc., on which users post and interact with 280-character-long messages known as "tweets". Registered users can post, like, and ...

Amazon Amazon most often refers to: * Amazons, a tribe of female warriors in Greek mythology * Amazon rainforest, a rainforest covering most of the Amazon basin * Amazon River, in South America * Amazon (company), an American multinational technology c ...

Netflix Netflix, Inc. is an American subscription video on-demand over-the-top streaming service and production company based in Los Gatos, California. Founded in 1997 by Reed Hastings and Marc Randolph in Scotts Valley, California, it offers a fil ...

, were taken down by a distributed denial-of-service attack. Researchers claimed that the attack was stemmed from contributors on Hack Forums. On Monday, 26 February 2018,

Agence France-Presse Agence France-Presse (AFP) is a French international news agency headquartered in Paris, France. Founded in 1835 as Havas, it is the world's oldest news agency. AFP has regional headquarters in Nicosia, Montevideo, Hong Kong and Washington, D.C ...

(AFP) reported that Ukrainian authorities had collared Avalanche cybercrime organizer Gennady Kapkanov, who was allegedly living under a fake passport in

Poltava Poltava (, ; uk, Полтава ) is a city located on the Vorskla River in central Ukraine. It is the capital city of the Poltava Oblast (province) and of the surrounding Poltava Raion (district) of the oblast. Poltava is administratively ...

, a city in central

Ukraine Ukraine ( uk, Україна, Ukraïna, ) is a country in Eastern Europe. It is the second-largest European country after Russia, which it borders to the east and northeast. Ukraine covers approximately . Prior to the ongoing Russian inv ...

. He marketed the

(NanoCore RAT) and another software licensing program called Net Seal exclusively on Hack Forums. Earlier, in December 2016, the

had arrested Taylor Huddleston, the programmer who created NanoCore and announced it first on Hack Forums. On 31 August 2018, several users on Hack Forums claimed to have received an e-mail from

Google Google LLC () is an American multinational technology company focusing on search engine technology, online advertising, cloud computing, computer software, quantum computing, e-commerce, artificial intelligence, and consumer electronics. ...

informing them that the FBI demanded the release of user data linked to the LuminosityLink malware sold on Hack Forums. On 29 October 2018,

Vice Media Vice Media Group LLC is an American-Canadian digital media and broadcasting company. , the Vice Media Group included five main business areas: VICE.com (digital content); VICE STUDIOS (film and TV production) VICE TV (also known as VICELAND); V ...

reported that

Saud Al-Qahtani Saud bin Abdullah al-Qahtani (born July 7, 1978) is a Saudi Arabian consultant and former royal court advisor. Prior to his dismissal in late 2018, he worked as an advisor to King Abdullah of Saudi Arabia and crown prince Mohammed bin Salman. ...

, advisor to Crown Prince

Mohammed bin Salman Mohammed bin Salman Al Saud ( ar, محمد بن سلمان آل سعود, translit=Muḥammad bin Salmān Āl Su‘ūd; born 31 August 1985), colloquially known by his initials MBS or MbS, is Crown Prince and Prime Minister of Saudi Arabia. H ...

Saudi Arabia Saudi Arabia, officially the Kingdom of Saudi Arabia (KSA), is a country in Western Asia. It covers the bulk of the Arabian Peninsula, and has a land area of about , making it the fifth-largest country in Asia, the second-largest in the A ...

and one of the alleged masterminds behind the

assassination of Jamal Khashoggi On 2 October 2018, Jamal Khashoggi, a Saudi dissident journalist was assassinated by agents of the Saudi government at the Saudi consulate in Istanbul, Turkey. Khashoggi was ambushed and strangled by a 15-member squad of Saudi assassins. His body ...

, was heavily active on Hack Forums for many years under the username ''Nokia2mon2'', requesting assistance in hacking victims and purchasing malicious surveillance software. There were rumours among users of Hack Forums that ''Nokia2mon2'' was connected to the government of Saudi Arabia and he was using the website as a resource to perform espionage on journalists, foreigners, and dissidents.

Public reception

According to CyberScoop's Patrick Howell O'Neill, "The forum caters mostly to a young audience who are curious and occasionally malicious, but still learning... Furthermore, HackForums is the kind of internet community that can seem impenetrable, even incomprehensible, to outsiders. It has a reputation for being populated by ''

trolls A troll is a being in Nordic folklore, including Norse mythology. In Old Norse sources, beings described as trolls dwell in isolated areas of rocks, mountains, or caves, live together in small family units, and are rarely helpful to human bei ...

'': chaos-driven children and brazen criminal activity." Cybersecurity journalist

Brian Krebs Brian Krebs (born 1972) is an American journalist and investigative reporter. He is best known for his coverage of profit-seeking cybercriminals.Perlroth, Nicole.Reporting From the Web's Underbelly. ''The New York Times''. Retrieved February 28, ...

described HackForums as "a forum that is overrun with teenage wannabe hackers who spend most of their time trying to impress, attack or steal from one another." Allison Nixon, Director of Security Research at Flashpoint, compared the activity on HackForums to that of real-world

street gangs A gang is a group or society of associates, friends or members of a family with a defined leadership and internal organization that identifies with or claims control over territory in a community and engages, either individually or collectivel ...

, stating:

References

{{reflist

External links

Official website
Hacking (computer security) Hacker culture Crime forums

Security breaches

Alleged criminal incidents

Public reception

See also

References

External links