The SSU’s cyber experts, together with Ukraine’s National Police, French law enforcement, and Europol, dealt a major blow to the reputation of one of the primary internet platforms used by global cybercriminals.
For over 10 years, hackers around the world used the forum to acquire cutting-edge spyware developments and access to private databases.
As a result of the international special operation, the platform’s developer was exposed in Kyiv. The forum had over 50,000 registered users, including infamous hacker groups such as REvil, LockBit, Conti, and Qilin.
Through the forum’s “services,” cybercriminals targeted automated management systems of banks, state institutions, and major corporations in the U.S. and the EU.
For instance, attackers used malware and initial access to corporate networks bought via the forum to extort money from international companies.
If victims refused to pay, they were threatened with the release of their confidential data online or the shutdown of their operations.
Numerous cases were also documented where the platform was used to recruit new members into hacker groups and sell the latest viral malware.
During the international cyber operation, authorities located the forum’s administrator and partially disrupted its infrastructure.
Searches at the suspect’s residence revealed computer equipment, phones, and cash received via crypto transactions for facilitating hacking activity.
An investigation is ongoing to identify all individuals involved in running and using the criminal forum.
The special operation was conducted under the procedural guidance of the Office of the Prosecutor General.
