Security News US and EU police shut down LeakBase, a site accused of sharing stolen passwords and hacking tools

[Brownie2019]

Content source

https://techcrunch.com/2026/03/04/u-s-and-eu-police-shut-down-leakbase-a-site-accused-of-sharing-stolen-passwords-and-hacking-tools/

U.S. and European law enforcement have seized the database from LeakBase, which prosecutors have touted as “one of the world’s largest online forums for cybercriminals” for sharing stolen passwords and hacking tools.
U.S. and European police seized the site earlier this week, and say its database has over 142,000 members and more than 215,000 messages sent between members.
LeakBase has been operating since 2021, the authorities said, and had a continuously maintained archive of hacked databases, including hundreds of millions of account credentials, credit card numbers, and banking account and routing information.
This is the latest takedown targeting sites that trade in stolen credentials, which are increasingly used to break into people’s accounts and steal data and cryptocurrency.
Europol said in a statement that around 100 enforcement actions were taken worldwide, including measures taken against the top 37 active users on the forum. Earlier on Wednesday, the FBI redirected the site’s domain to nameservers controlled by the agency, effectively shutting the site down.
Leakbase now displays a seizure notice, saying that the forum’s contents, private messages, and IP address logs have been preserved. According to The Record, which interviewed FBI’s cyber official Brett Leatherman, the investigation resulted in over 13 arrests, searches, and interviews with 33 suspects, and capturing the forum’s entire database.

 

[ForgottenSeer 123960]

Thanks for sharing this update, @Brownie2019 . The takedown of LeakBase is a massive disruption to the cybercriminal ecosystem. According to the law enforcement statements, authorities have captured the forum's entire database, which includes over 142,000 members and more than 215,000 private messages sent between them. Because the site's IP address logs have also been preserved , and Europol has already taken around 100 enforcement actions globally targeting the top 37 active users, it is highly likely that authorities will use this forensic data to track down the buyers and sellers who operated on the platform next.

 

[Halp2001]

Every time a space where stolen credentials were traded is dismantled, it doesn’t just cut off a distribution channel—it also sends a clear message: digital impunity has its limits. What’s valuable here is that the operation didn’t stop at shutting down the forum, but preserved data that will allow authorities to trace those who profited from that market.