eupolicy.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
This Mastodon server is a friendly and respectful discussion space for people working in areas related to EU policy. When you request to create an account, please tell us something about you.

Server stats:

209
active users

#shinyhunters

1 post1 participant0 posts today
Hackread.com<p><a href="https://mstdn.social/tags/BreachForums" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BreachForums</span></a> resurfaces fully restored on its original .onion domain as the new admin denies any arrests of original <a href="https://mstdn.social/tags/ShinyHunters" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ShinyHunters</span></a> members.</p><p>Read: <a href="https://hackread.com/breachforums-resurface-original-dark-web-onion-address/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">hackread.com/breachforums-resu</span><span class="invisible">rface-original-dark-web-onion-address/</span></a></p><p><a href="https://mstdn.social/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a> <a href="https://mstdn.social/tags/CyberCrime" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberCrime</span></a> <a href="https://mstdn.social/tags/DataBreach" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DataBreach</span></a> <a href="https://mstdn.social/tags/ThreatIntel" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ThreatIntel</span></a></p>
Paul Shread<p>We now know who the prolific hacker “IntelBroker” allegedly is. These court filings always seem like a tutorial on how to be a better cybercriminal: Only accept payment in the most private cryptocurrencies and don’t intermingle personal and online accounts and IP addresses. <a href="https://masto.ai/tags/Cybercrime" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cybercrime</span></a> <a href="https://masto.ai/tags/Arrests" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Arrests</span></a> <a href="https://masto.ai/tags/BreachForums" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BreachForums</span></a> <a href="https://masto.ai/tags/Hackers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Hackers</span></a> <a href="https://masto.ai/tags/ShinyHunters" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ShinyHunters</span></a> <a href="https://masto.ai/tags/DarkWeb" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DarkWeb</span></a><br><a href="https://thecyberexpress.com/british-national-alleged-to-be-intelbroker/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">thecyberexpress.com/british-na</span><span class="invisible">tional-alleged-to-be-intelbroker/</span></a></p>
Hackread.com<p>4 alleged ShinyHunters members arrested. IntelBroker hacker has been revealed as Kai West, a British national in major BreachForums crackdown.</p><p>Read: <a href="https://hackread.com/breachforums-shinyhunters-arrested-intelbroker-kai-west/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">hackread.com/breachforums-shin</span><span class="invisible">yhunters-arrested-intelbroker-kai-west/</span></a></p><p><a href="https://mstdn.social/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a> <a href="https://mstdn.social/tags/CyberCrime" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberCrime</span></a> <a href="https://mstdn.social/tags/BreachForums" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BreachForums</span></a> <a href="https://mstdn.social/tags/ShinyHunters" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ShinyHunters</span></a> <a href="https://mstdn.social/tags/IntelBroker" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IntelBroker</span></a></p>
Dissent Doe :cupofcoffee:<p>As expected, more details are emerging in other news outlets about the arrest of <a href="https://infosec.exchange/tags/ShinyHunters" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ShinyHunters</span></a>. </p><p>One detail I noted is that ShinyHunters is suspected of being responsible for the attacks on <a href="https://infosec.exchange/tags/LVMH" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>LVMH</span></a>, which is the high-end brand associated with Tiffany and Dior, who both reported breaches this year. Although there had been some speculation that <a href="https://infosec.exchange/tags/ScatteredSpider" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ScatteredSpider</span></a> might be responsible for those breaches, it appears that ShinyHunters was allegedly responsible.</p><p>There have been a number of hacks this year where it is not clear -- in the absence of law enforcement confirmation -- whether a <a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>databreach</span></a> has been by Scattered Spider or ShinyHunters, or whether they have collaborated with one doing the hacking and the other doing the extortion. I predict in weeks/months to come, we will be given a pretty big list of big hacks that ShinyHunters has been involved in this year. </p><p>As I reported in my coverage of the PowerSchool hack and prosecution of Matthew Lane, ShinyHunters' name has been linked to that one, too, but was not named as a co-conspirator. </p><p>This is where I should write "This is a developing story..." huh? </p><p><span class="h-card" translate="no"><a href="https://mastodon.social/@campuscodi" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>campuscodi</span></a></span></p>
Dissent Doe :cupofcoffee:<p>BIG news:</p><p>ShinyHunters and team members arrested in France:</p><p><a href="https://www.leparisien.fr/high-tech/la-police-interpelle-cinq-hackers-francais-de-haut-vol-derriere-un-celebre-forum-de-vol-de-donnees-25-06-2025-QJTPFTDPQZAP7B25MF24YLHU6E.php" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">leparisien.fr/high-tech/la-pol</span><span class="invisible">ice-interpelle-cinq-hackers-francais-de-haut-vol-derriere-un-celebre-forum-de-vol-de-donnees-25-06-2025-QJTPFTDPQZAP7B25MF24YLHU6E.php</span></a></p><p><a href="https://infosec.exchange/tags/cybercrime" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cybercrime</span></a> <a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>databreach</span></a> <a href="https://infosec.exchange/tags/shinyhunters" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>shinyhunters</span></a> <a href="https://infosec.exchange/tags/hollow" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>hollow</span></a> <a href="https://infosec.exchange/tags/noct" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>noct</span></a> <a href="https://infosec.exchange/tags/depressed" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>depressed</span></a> <a href="https://infosec.exchange/tags/intelbroker" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>intelbroker</span></a></p>
Dissent Doe :cupofcoffee:<p>There's always drama with the Breached/BreachForums saga. Here's some of what has been going on in the past few weeks after BreachForums[.]st went offline without any explanation:</p><p>"SCAM" is a four-letter word: BreachForums edition: <a href="https://databreaches.net/2025/05/02/scam-is-a-four-letter-word-breachforums-edition/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">databreaches.net/2025/05/02/sc</span><span class="invisible">am-is-a-four-letter-word-breachforums-edition/</span></a></p><p><a href="https://infosec.exchange/tags/cybercrime" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cybercrime</span></a> <a href="https://infosec.exchange/tags/forum" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>forum</span></a> <a href="https://infosec.exchange/tags/hacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>hacking</span></a> <a href="https://infosec.exchange/tags/Breached" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Breached</span></a> <a href="https://infosec.exchange/tags/BreachForums" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BreachForums</span></a> <a href="https://infosec.exchange/tags/scam" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>scam</span></a> <a href="https://infosec.exchange/tags/ShinyHunters" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ShinyHunters</span></a> <a href="https://infosec.exchange/tags/Anastasia" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Anastasia</span></a> <a href="https://infosec.exchange/tags/Momondo" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Momondo</span></a> </p><p><span class="h-card" translate="no"><a href="https://mastodon.social/@campuscodi" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>campuscodi</span></a></span> <span class="h-card" translate="no"><a href="https://infosec.exchange/@euroinfosec" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>euroinfosec</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.social/@zackwhittaker" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>zackwhittaker</span></a></span> <span class="h-card" translate="no"><a href="https://infosec.exchange/@lawrenceabrams" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>lawrenceabrams</span></a></span></p>
Dissent Doe :cupofcoffee:<p>OK, I didn't foresee this one....</p><p>Alleged ShinyHunters member returned to France after prison in the U.S., now facing French charges</p><p><a href="https://databreaches.net/2024/12/06/alleged-shinyhunters-member-returned-to-france-after-prison-in-the-u-s-now-facing-french-charges/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">databreaches.net/2024/12/06/al</span><span class="invisible">leged-shinyhunters-member-returned-to-france-after-prison-in-the-u-s-now-facing-french-charges/</span></a></p><p><a href="https://infosec.exchange/tags/ShinyHunters" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ShinyHunters</span></a> <a href="https://infosec.exchange/tags/Sezyo" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Sezyo</span></a> <a href="https://infosec.exchange/tags/phishing" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>phishing</span></a> <a href="https://infosec.exchange/tags/scampages" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>scampages</span></a> <a href="https://infosec.exchange/tags/extortion" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>extortion</span></a> <a href="https://infosec.exchange/tags/Breached" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Breached</span></a> <a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>databreach</span></a></p>
Sam Stepanyan :verified: 🐘<p><a href="https://infosec.exchange/tags/Twilio" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Twilio</span></a> has confirmed that an unsecured API endpoint allowed <a href="https://infosec.exchange/tags/ShinyHunters" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ShinyHunters</span></a> threat actors to verify and leak the phone numbers of 33 million of Authy MFA users:<br><a href="https://infosec.exchange/tags/APISecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>APISecurity</span></a><br>👇<br><a href="https://www.bleepingcomputer.com/news/security/hackers-abused-api-to-verify-millions-of-authy-mfa-phone-numbers/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">bleepingcomputer.com/news/secu</span><span class="invisible">rity/hackers-abused-api-to-verify-millions-of-authy-mfa-phone-numbers/</span></a></p>
PrivacyDigest<p><a href="https://mas.to/tags/Hackers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Hackers</span></a> Detail How They Allegedly Stole <a href="https://mas.to/tags/Ticketmaster" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Ticketmaster</span></a> Data From <a href="https://mas.to/tags/Snowflake" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Snowflake</span></a> </p><p>A <a href="https://mas.to/tags/ShinyHunters" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ShinyHunters</span></a> <a href="https://mas.to/tags/hacker" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>hacker</span></a> tells WIRED that they gained access to Ticketmaster’s Snowflake cloud account—and others—by first breaching a third-party contractor. <br><a href="https://mas.to/tags/privacy" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>privacy</span></a> <a href="https://mas.to/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>security</span></a></p><p><a href="https://www.wired.com/story/epam-snowflake-ticketmaster-breach-shinyhunters/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">wired.com/story/epam-snowflake</span><span class="invisible">-ticketmaster-breach-shinyhunters/</span></a></p>
PrivacyDigest<p>How <a href="https://mas.to/tags/ShinyHunters" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ShinyHunters</span></a> <a href="https://mas.to/tags/hackers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>hackers</span></a> allegedly pilfered <a href="https://mas.to/tags/Ticketmaster" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Ticketmaster</span></a> data from <a href="https://mas.to/tags/Snowflake" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Snowflake</span></a> <br><a href="https://mas.to/tags/privacy" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>privacy</span></a></p><p><a href="https://arstechnica.com/?p=2032105" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">arstechnica.com/?p=2032105</span><span class="invisible"></span></a></p>
Dissent Doe :cupofcoffee:<p>Developing: BreachForums down, ShinyHunters' and forum Telegram channels deleted?</p><p><a href="https://databreaches.net/2024/06/10/developing-breachforums-down-shinyhunters-and-forum-telegram-channels-deleted/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">databreaches.net/2024/06/10/de</span><span class="invisible">veloping-breachforums-down-shinyhunters-and-forum-telegram-channels-deleted/</span></a></p><p>tl;dr No one really has any proof of anything but of course, speculation abounds... </p><p><a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>databreach</span></a> <a href="https://infosec.exchange/tags/BreachForums" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BreachForums</span></a> <a href="https://infosec.exchange/tags/FBI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FBI</span></a> <a href="https://infosec.exchange/tags/DOJ" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DOJ</span></a> <a href="https://infosec.exchange/tags/ShinyHunters" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ShinyHunters</span></a></p>
Richi Jennings<p><a href="https://vmst.io/tags/AWS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AWS</span></a> instance was penetrated by unknown perpetrators; <a href="https://vmst.io/tags/ShinyHunters" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ShinyHunters</span></a> is selling stolen data on their behalf. Don’t forget to add the hidden 5% fee to the ransom.</p><p>As we reported yesterday, hackers breached Ticketmaster and stole half a billion records of personal information. Now we know that independent researchers have verified the leaked data, which has been priced at a half-million dollar ransom.</p><p>The tale also highlights the return of the notorious <a href="https://vmst.io/tags/BreachForums" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BreachForums</span></a> despite the FBI’s best efforts. In <a href="https://vmst.io/tags/SBBlogwatch" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SBBlogwatch</span></a>, here’s what we know now and what people are saying. At @TechstrongGroup’s @SecurityBlvd: <a href="https://securityboulevard.com/2024/05/ticketmaster-shinyhunters-breachforums-richixbw/?utm_source=richisoc&amp;utm_medium=social&amp;utm_content=richisoc&amp;utm_campaign=richisoc" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">securityboulevard.com/2024/05/</span><span class="invisible">ticketmaster-shinyhunters-breachforums-richixbw/?utm_source=richisoc&amp;utm_medium=social&amp;utm_content=richisoc&amp;utm_campaign=richisoc</span></a></p>
Tarnkappe.info<p>📬 BreachForums: Erobert ShinyHunters Cybercrime-Site vom FBI zurück?<br><a href="https://social.tchncs.de/tags/DarkCommerce" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DarkCommerce</span></a> <a href="https://social.tchncs.de/tags/BreachForums" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BreachForums</span></a> <a href="https://social.tchncs.de/tags/BrettCallow" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BrettCallow</span></a> <a href="https://social.tchncs.de/tags/FBI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FBI</span></a> <a href="https://social.tchncs.de/tags/NiceNIC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NiceNIC</span></a> <a href="https://social.tchncs.de/tags/RaidForums" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RaidForums</span></a> <a href="https://social.tchncs.de/tags/ShinyHunters" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ShinyHunters</span></a> <a href="https://sc.tarnkappe.info/33867a" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">sc.tarnkappe.info/33867a</span><span class="invisible"></span></a></p>
Dissent Doe :cupofcoffee:<p>I haven't posted this on my site yet, but there have been a few developments likely related to the seizure of <a href="https://infosec.exchange/tags/BreachForums" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BreachForums</span></a>. As a preview, recall that Kantonspolizei Zürich were one of the cooperating entities in the takedown and that the seizure notice had two avatars behind bars: one was Baphomet, the other was a default avatar that has been used by a number of people, but is not the avatar of the forum owner ShinyHunters.</p><p>Law enforcement has yet to issue any press release or answer any questions about the takedown. </p><p>Developments:</p><p><a href="https://infosec.exchange/tags/ShinyHunters" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ShinyHunters</span></a> was notified by <a href="https://infosec.exchange/tags/CloudFlare" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CloudFlare</span></a> that they had received a court order ordering CF to cancel BF's account. CF complied with the court order. (Source: ShinyHunters shared text copy of CF communication with DataBreaches)</p><p>CF did not tell ShinyHunters what court had ordered that, so Shiny asked them to provide a copy of the order if there was no gag order with it, or to at least say what court ordered it so it could be appealed. They have not gotten a response from CF as yet to that request.</p><p>On May 15, the same day as the takedown, Switzerland Services sent customers a notice stating, in part, that "all our network equipment and servers in Switzerland were confiscated yesterday by Swiss police due to a local prosecutor order and therefore all services in Switzerland are currently unavailable and all data can de considered as lost and compromised."</p><p>ShinyHunters had previously told DataBreaches that BF has used servers and services in Switzerland. </p><p>ShinyHunters has also claimed to be in Switzerland. DataBreaches does not know if that is true or not. </p><p>I'll have this up on databreaches.net soon with the full message from Switzerland Services. </p><p><a href="https://infosec.exchange/tags/seizure" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>seizure</span></a> <a href="https://infosec.exchange/tags/FBI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FBI</span></a> <a href="https://infosec.exchange/tags/NCA" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NCA</span></a> <a href="https://infosec.exchange/tags/enforcement" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>enforcement</span></a> <a href="https://infosec.exchange/tags/hacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>hacking</span></a> <a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>databreach</span></a> </p><p><span class="h-card" translate="no"><a href="https://infosec.exchange/@brett" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>brett</span></a></span> <span class="h-card" translate="no"><a href="https://infosec.exchange/@DarkWebInformer" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>DarkWebInformer</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.social/@arstechnica" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>arstechnica</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.social/@campuscodi" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>campuscodi</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.social/@zackwhittaker" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>zackwhittaker</span></a></span></p>