OGUsers, one of the most popular hacking forums on the internet, today revealed a violation, the second since 2019.
“It appears that someone was able to hack the server through a shell they put on the avatar they uploaded to software of the forum. This is how he gained access to our current database", announced Ace, forum administrator.
The intruder is believed to have stolen information of the 200.000 users of the forum.
The briefing was detected by the data breach monitoring service.
Before the forum went offline, administrators said they would be resetting passwords and urged all users to enable two-factor authentication (2FA) on their accounts to prevent the data being taken from being used hijacking accounts.
Ο website served as a venue educationand meeting place for hackers who tried to organize SIM card attacks (SIM jacking).
The previous breach took place in May 2019, when a hacker again breached the OGUsers servers, and stole details from 113.000 users of the forum at the time. The attack did not stop there, however, as the hacker deleted the server's hard drives and later posted the stolen data to an adversary hacking forum.