I’ve posted links to some other reports on this topic earlier today, but just came across Intel 471’s post.
Sometimes, even criminals are on the bad end of a breach.
Since the beginning of the year, Intel 471 has observed four well-known cybercriminal forums dealing with a breach, including two since the beginning of March. The forums, all predominantly Russian-language forums, saw the breaches publicly disclosed elsewhere, with some instances of user data being leaked or put up for sale.
Intel 471 does not know who is responsible for the hacks, but due to their public nature, we think it is unlikely that this is a law enforcement operation.
Read more on Intel 471.