Cybercrime marketplace: Law enforcers enter BreachForums via zero-day gap

The cybercrime marketplace BreachForums is currently offline. The reason given by those behind it is that law enforcement officers have hacked the forum via a zero-day security vulnerability and thus gained access to it.

This can be seen in a statement (see screenshot) that appeared when the underground forum's website was accessed at the time of this report. In it, the operators write that they received information in mid-April 2025 that “various agencies and other global law enforcement authorities” had gained access after successfully exploiting a vulnerability in the MyBB forum software.

Questionable behavior: Maintaining reputation

According to their statements, they immediately took the forum offline and began investigating the security incident. They assure users that their infrastructure has not been compromised and that no data has been stolen. They also warn users about BreachForums clones, which can be traps (honeypots) set up by security researchers.

The board operators apologize to their community for the non-transparent communication at this time and assure them that the safety of their users is their top priority. Unfortunately, online criminals have become extremely professionalized in recent years. For example, they follow the example of companies, including job interviews and sick pay. Their communication also sounds like polished PR-speak.

Cybercrime drama

In May 2024, the FBI and other investigative authorities took control of BreachForums. However, the operators took it back shortly afterwards. In this context, there are also said to have been arrests, which the operators deny in the current statement.

(des)