web analytics

US indicts one for role in BreachForums, France arrests four others – Source: www.csoonline.com

us-indicts-one-for-role-in-breachforums,-france-arrests-four-others-–-source:-wwwcsoonline.com
Rate this post

Source: www.csoonline.com – Author:

Shweta Sharma

News

Jun 26, 20254 mins

Data BreachHacker GroupsLegal

A US court has indicted a man arrested earlier this year on suspicion of being an administrator of stolen data marketplace BreachForum, while on Monday French police arrested four others suspected of running the site.

A US court indicted a man accused of being IntelBroker, a key administrator of stolen data marketplace BreachForums, on Wednesday, just days after four others accused of running the site alongside him were arrested in France.

British national Kai West, 25, was arrested in France in February, and US authorities are seeking to extradite him to the US to face the charges on which he was indicted in the US District Court for the Southern District of New York. These include conspiracy to commit computer intrusions, wire fraud offenses and unauthorized access to protected computers.

Earlier in the week, the French Cybercrime Brigade arrested four people believed to be ShinyHunters, Hollow, Noct, and Depressed, also involved in BreachForums, according to French media reports.

Together, the five are believed to have taken over the site following the June 2023 arrest of its founder Conor Brian Fitzpatrick, aka Pompompurin. The warrant issued for West’s arrest in February claimed that he and his co-conspirators had cumulatively caused the victims of computer intrusions and thefts of data losses of at least $25 million.

The arrests mark a major blow to the latest iteration of BreachForums, a marketplace long linked to high-profile data breaches and identity theft campaigns.

Stephen Kowski, Field CTO at email security provider SlashNext, said, “These arrests represent a significant win for international law enforcement and demonstrate that cybercriminals can’t hide behind forum anonymity forever.”

Prosecutors allege West stole and sold data from entities spanning government agencies, telecoms providers, tech giants including AMD, HPE, and Nokia, and healthcare providers.

Assumed active on BreachForums since shortly after pompompurin’s arrest, IntelBroker claimed responsibility for a series of high profile hacks between January 2023 and December 2024, including Europol, DC Health Link, Cisco and General Electric, operating primarily through the forum for trading stolen health records, internal corporate documents, and user data.

On BreachForums, IntelBroker was briefly a member of a racist cybercrime group CyberNiggers and became a prominent member there before taking on the leadership of BreachForums 2.0. Having identified himself as a Serbian living in Russia in a previous interview, IntelBroker has dismissed allegations of ties to the Iranian state as “outrageous”.

West was reportedly arrested by French authorities in February 2025, days after IntelBroker posted his resignation as BreachForums admin and owner citing ‘lack of time’ as the reason for doing so. He remains in custody there while US authorities seek his extradition.

If convicted in the US, he could face up to 25 years in prison on several of the charges filed against him.

Four alleged co-conspirators nabbed in France

Following an investigation by the Cybercrime Brigade of the Paris Police Prefecture, French police arrested four people believed to be BreachForums operators ShinyHunters, Hollow, Noct, and Depressed in coordinated raids in the Paris region, Normandy and on the French island of Reunion earlier this week, according to a report by French newspaper Le Parisien. All four are reportedly French and in their twenties, the newspaper reported.

The four are believed to have helped manage and moderate the revived BreachForums after its 2023 takedown. While ShinyHunters and Hollow held admin and moderator roles, respectively, the involvement of Noct and Depressed remains less defined.

The Paris Police Prefecture did not respond to a request for comment.

BreachForums, a successor to the shuttered RaidForums, has long operated as a go-to-marketplace for stolen data–facilitating leaks tied to breaches of major French entities like Boulanger, SFR, France Travail, and the French Football Federation. Despite multiple takedowns and arrests of key admins, the forum repeatedly resurfaced under new leadership continuing to fuel cybercrime across borders.

And that may not be the end of it, warned Agnidipta Sarkar, chief evangelist at ColorTokens, developer of a Zero Trust microsegmentation platform.

“It remains unknown whether there are remnants of their organization that could revive themselves to be smarter and more egregious, mainly because the forum’s reemergence after previous takedowns in 2023 and 2024 demonstrates its resilience,” Sarkar said.

Whether it’s BreachForums that returns, or another such site, said SlashNext’s Kowski, “Organizations need to assume their data will eventually surface on these platforms and focus on real-time protection that can detect and block attacks even when using legitimate but compromised credentials or information.”

SUBSCRIBE TO OUR NEWSLETTER

From our editors straight to your inbox

Get started by entering your email address below.

Original Post url: https://www.csoonline.com/article/4013356/us-indicts-one-for-role-in-breachforums-france-arrests-four-others.html

Category & Tags: Data Breach, Hacker Groups, Legal, Security – Data Breach, Hacker Groups, Legal, Security

Views: 0

LinkedIn
Twitter
Facebook
WhatsApp
Email

advisor pick´S post

CISO2CISO Notepad Series
How Can We Structure Cybersecurity Teams To Better Integrate Security In Agile At Scale?
How Can We Structure Cybersecurity...
OCCUPYTHEWEB
Linux Basics for Hackers by Occupytheweb
Linux Basics for Hackers by...
NIST
Digital Forensics and Incident Response (DFIR) Framework for Operational Technology (OT) by NIST – Eran Salfati and Michael Pease
Digital Forensics and Incident Response...
Think Big Blog
Top 10 TED Talks to Learn about Cyber Security
Top 10 TED Talks to...
NCSC
NCSC Cyber Security for Small Business “SMEs” Guide.
NCSC Cyber Security for Small...
Practical DevSecOps
API Security Fundamentals – Your Handy Guide to Building an Unhackable System by practical-devsecops.com
API Security Fundamentals – Your...
Marcos Jaimovich
Nuevo Firewall para IA , un Cacharro nuevo para nuestro SOC y los equipos de Ciberseguridad !
Nuevo Firewall para IA ,...
Vendict
The 2024 CISO Burnout Report by Vendict
The 2024 CISO Burnout Report...
Mohammad Alkhudari
Cybersecurity Strong Strategy step by step Guide collected by Mohammad Alkhudari 2024
Cybersecurity Strong Strategy step by...
Marcos Jaimovich
The Silent Spectre Haunting Your Network: QPhishing, the CISO’s Unspoken Nightmare.
The Silent Spectre Haunting Your...
Marcos Jaimovich
Goodbye to Traditional: Why Conventional Cybersecurity Tools are No Longer Sufficient for the Future of Digital Threats ?
Goodbye to Traditional: Why Conventional...
Marcos Jaimovich
Why do we compare a SOC (Security Operations Center) with the cockpit of a commercial airplane? by Marcos Jaimovich
Why do we compare a...

LASTEST PUBLISHED POSTS

Cyberint
Retail Threat Landscape Report Q1-Q3 – November 2024 Summary by Cyberint a Check Point Company
Retail Threat Landscape Report Q1-Q3...
NCSC
Protecting Critical Supply Chains – A Guide to Securing your Supply Chain Ecosystem
Protecting Critical Supply Chains –...
Culture AI
Time to Adapt – The State of Human Risk Management in 2024 by Culture AI.
Time to Adapt – The...
National Cyber Security Centre
Engaging with Boards to improve the management of cyber security risk.
Engaging with Boards to improve...
Microsoft Security
2024 State of Multicloud Security Report by Microsoft Security
2024 State of Multicloud Security...
bugcrowd
Inside the Mind of a CISO 2024 The Evolving Roles of Security Leaders 2024 by bugcrowd
Inside the Mind of a...
Mohammad Alkhudari
Cybersecurity Strong Strategy step by step Guide collected by Mohammad Alkhudari 2024
Cybersecurity Strong Strategy step by...
Lacework
CISO’s Playbookto Cloud Security by Lacework
CISO’s Playbookto Cloud Security by...
MITRE - Carson Zimmerman
Ten Strategies of a World-Class Cybersecurity Operations Center by MITRE
Ten Strategies of a World-Class...
SILVERFRONT - AIG
Identity Has Become the Prime Target of Threat Actors by Silverfort AIG.
Identity Has Become the Prime...
CYZEA.IO
Enterprise Information Security
Enterprise Information Security
IGNITE Technologies
ENCRYPTED REVERSE
ENCRYPTED REVERSE

More Latest Published Posts

WORLD BANK GROUP
Global Cybersecurity Capacity Program
Global Cybersecurity Capacity Program
Gary Hinson
Getting started withsecurity metrics
Getting started withsecurity metrics
EDPS
Generative AI and the EUDPR.
Generative AI and the EUDPR.
Bright
2024 Guide to Application Security Testing Tools
2024 Guide to Application Security Testing Tools
HADESS
Hacker Culture
Hacker Culture
Quuensland Govermment
RISK ASSESSMENT PROCESS HANDBOOK
RISK ASSESSMENT PROCESS HANDBOOK
Ministry of MOS Security
HIPAA SIMPLIFIED
HIPAA SIMPLIFIED
Hacker Combat
How Are Passwords Cracked?
How Are Passwords Cracked?
CIS - Center for Internet Security
How to Plan a Cybersecurity Roadmap in Four Steps
How to Plan a Cybersecurity Roadmap in Four Steps
ACSC Australia
Information Security Manual
Information Security Manual
Kaspersky
Incident Response Playbook: Dark Web Breaches
Incident Response Playbook: Dark Web Breaches
ninjaOne
Endpoint Hardening Checklist
Endpoint Hardening Checklist
HADESS
Important Active Directory Attribute
Important Active Directory Attribute
ISA GLOBAL CYBERSECURITY ALLIANCE
IIoT System Implementation and Certification Based on ISA/IEC 62443 Standards
IIoT System Implementation and Certification Based on ISA/IEC 62443 Standards
Rajneesh Gupta
IAM Security CHECKLIST
IAM Security CHECKLIST
sqrrl
Hunt Evil
Hunt Evil
Searchinform
How to protect personal data and comply with regulations
How to protect personal data and comply with regulations
Giuseppe Manco
Threat Intelligence Platforms
Threat Intelligence Platforms
CSA Cloud Security Alliance
Hardware Security Module(HSM) as a Service
Hardware Security Module(HSM) as a Service
IGNITE Technologies
CREDENTIAL DUMPING FAKE SERVICES
CREDENTIAL DUMPING FAKE SERVICES
IGNITE Technologies
A Detailed Guide on Covenant
A Detailed Guide on Covenant
NIST
Computer Security Incident Handling Guide
Computer Security Incident Handling Guide
IGNITE Technologies
DIGITAL FORENSIC FTK IMAGER
DIGITAL FORENSIC FTK IMAGER
Accedere
Cloud Security Assessment
Cloud Security Assessment
YL VENTURES
CISO Reporting Landscape 2024
CISO Reporting Landscape 2024
CISO Edition
Reporting Cyber Risk to Boards
Reporting Cyber Risk to Boards
CIOB
CIOB Artificial Intelligence (AI) Playbook 2024
CIOB Artificial Intelligence (AI) Playbook 2024
INCIBE & SPAIN GOVERNMENT
Nuevas normativas de 2024 de ciberseguridad para vehículos
Nuevas normativas de 2024 de ciberseguridad para vehículos