On Wednesday, police within the Netherlands and Northern Eire arrested two 22-year-old males believed to be hooked up to WeLeakInfo, a web page providing usernames and passwords from a couple of knowledge breaches on the market. On the identical time, the Federal Bureau of Investigation, in coordination with the United Kingdom’s Nationwide Crime Company, the Netherlands Nationwide Police Corps, the German Bundeskriminalamt, and the Police Carrier of Northern Eire, took down the area for the web page, redirecting it to a seizure understand (proven above).
To start with, some idea the takedown used to be merely a breach of the web page itself—most commonly for the reason that FBI took the time so as to add the web page’s emblem to the takedown understand.
There is a mess going down over at We Leak Data since the day before today. It looks as if they were given hacked, and somebody threw up an FBI seizure web page. The seizure understand does not glance legitimate.
— Cypher (@CryptoCypher) January 16, 2020
However on Thursday afternoon, the Justice Division announced the takedown and put out a decision for additional data on WeLeakInfo and its operators. WeLeakInfo claimed to have over 12 billion usernames and passwords from a selection of over 10,000 knowledge breaches. At the start hosted at a Canadian webhosting corporate’s knowledge heart when arrange in 2016, the area used to be moved at the back of Cloudflare an afternoon later. The web page, at the start marketed as “probably the most intensive non-public database seek engine,” presupposed to be a valid instrument for firms to accomplish safety analysis—even claiming to provide an software interface for acting bulk assessments for breaches of corporate accounts.
However the web page used to be imagined to be promoting extra than simply breach warnings. In a statement of the seizure of the area posted Thursday by means of the United States Justice Division, the DOJ alleged that WeLeakInfo allowed its customers to get entry to “a seek engine to study and acquire the private data illegally acquired in over 10,000 knowledge breaches containing over 12 billion listed data—together with, as an example, names, electronic mail addresses, usernames, telephone numbers, and passwords for on-line accounts.” The web page’s subscription plans allowed customers limitless get entry to to the knowledge.
Whilst the area has been seized and computer systems hooked up to its operation were confiscated by Dutch police, the destiny of the web page’s server stays unknown.