Two days ago, a group of hackers managed to breach servers of Freedom Hosting II a popular web hosting service by DarkWeb.
As expected, hackers were not happy with just replacing 10.613 websites with one that said "Hello, Freedom Hosting II, you've been hacked" but they also stole the Web Hosting databases.
All data is already online.
According to Troy Hunt, who runs the popular service Have I Been Pwned?, the data dump includes data ηλεκτρονικού ταχυδρομείου από 381.000 users.
Since Freedom Hosting II has been a very popular service among those involved in creation and distribution of child pornography, many of the addresses but also the e-mails themselves will probably "burn" a lot of people.
Almost 21 percent of these addresses also existed in previous violations that have passed to the Have I Been Pwned database indicating that many of these are real addresses that some people use on a daily basis.
In a tweet, Troy Hunt said there were "thousands" of .gov emails, adding that "how many are real and for what purposes they are used is another matter."
Thousands of .gov emails. How many are real and what purposes they were being used for is another issue. https://t.co/31fQoWG4qj
- Troy Hunt (@troyhunt) February 5, 2017
In addition to user data, the leak also contains backups of the websites, many of which used free content systems such as WordPress and PHPBB. According to Hunt, almost half of the websites in the data that they leaked allegedly contain illegal child pornography content.
The rest of the content is forged websites used for phishing, hacking forums, personal blogs, and Bitcoin escrow services.
According to Hunt, the data leaked from Freedom Hosting II is almost certainly in the hands of law enforcement. So it seems inevitable that in the coming weeks, some will hear a hit on their doors.