Replace January 29, 14:15 EST:Â Seizure banners had been added to the cracked[.] io, nulled [.] to, starkrdp [.] io, mysellix [.] io, and sellix [.] io, confirming that the domains had been seized in a joint legislation enforcement motion dubbed “Operation Talent” that included authorities from the US, Italy, Spain, Europe, France, Greece, Australia, and Romania.
“This website, as well as the information on the customers and victims of the website, has been seized by international law enforcement partners,” the banners learn.
Cracked.io’s workers has launched a brand new assertion on Telegram confirming that legislation enforcement has seized the cracked.io area.
“Now that everyone has more clarity on the situation, Cracked.io has been seized under operation talent with specific reasons being undisclosed,” they mentioned.
“We are still waiting for the official court documentation from the data centre and the domain host. We will inform you guys further on those details once we have it. A sad day indeed for our community.”
See our authentic story beneath.
The FBI has seized the domains for the notorious Cracked.io and Nulled.to hacking boards, that are recognized for his or her concentrate on cybercrime, password theft, cracking, and credential stuffing assaults.
Whereas a few of their members additionally engaged in moral hacking discussions, the websites had been extensively considered a hub for cybercriminal exercise.
Additionally they hosted content material associated to software program cracks, hacking instruments like “configs” utilized by credential stuffing assault instruments (e.g., OpenBullet and SilverBullet), and different illicit actions, together with a “combo lists” market with stolen credentials or databases.
When making an attempt to open the websites, internet browsers show “Error 1000. DNS points to prohibited IP” and Error 1016. Origin DNS error” messages.
As we speak, the FBI seized the boards’ domains and modified their title servers to ns1.fbi.seized.gov and ns2.fbi.seized.gov from their earlier Cloudflare title servers.
Cracked.io’s workers printed an announcement on their Telegram channel earlier immediately, blaming an information middle subject for the continuing entry issues.
“There is an active issue in our data centre which the staff is working on. Hence services remain offline till the issue is resolved. We will get detailed report later,” they mentioned.
“We can only hope it is resolved without further issue. No estimated time at this moment. The current status from data centre is that it may take up to 1 day.”
As we speak, the FBI additionally seized domains utilized by:
- MySellIX (mysellix.io) and SellIX (sellix.io), two platforms that allowed customers to create their very own on-line shops, which menace actors additionally used to promote stolen information, software program keys, and compromised accounts, and
- StarkRDP (starkrdp.io), a Home windows RDP digital internet hosting supplier that some menace actors allegedly used for credential stuffing assaults.
An FBI spokesperson was not instantly out there for remark when contacted by BleepingComputer earlier immediately.
Whereas the legislation enforcement company has but to share extra details about this wave of seizures, all indicators level to a crackdown on platforms concerned in credential stuffing and stolen account credentials.
