- Global law enforcement shut down LeakBase, a cybercrime forum used to trade stolen data tools and personal information.
- Authorities seized accounts, messages, credit details, and IP logs while investigating over 142000 forum members.
- LeakBase takedown highlights rising cyber threats as crypto data leaks and exchange breaches continue worldwide.
International law enforcement agencies have dismantled LeakBase, a major cybercrime forum used to trade stolen data and hacking tools. Authorities removed the platform following a coordinated operation led by the Federal Bureau of Investigation and Europol. Investigators targeted the forum after years of monitoring its activity across multiple jurisdictions.
LeakBase had more than 142,000 registered members and hosted over 215,000 messages. The platform allowed cybercriminals to buy and sell stolen personal information, financial credentials, and hacking tools. Investigators considered the forum a major hub for organized digital crime.
Authorities seized user accounts, private messages, credit details, and IP logs during the operation. Officials collected the data as evidence for ongoing criminal investigations. The enforcement action took place on March 3 and March 4 across multiple countries.
Coordinated International Operation Targets Cybercrime Network
Law enforcement agencies in 14 countries carried out synchronized actions against the platform and its users. Authorities replaced the forum with seizure banners and issued warning notices to registered members. Investigators also secured additional digital evidence during the operation.
Officials executed search warrants and made arrests across several jurisdictions. Authorities conducted enforcement actions in the United States, Australia, Belgium, Poland, Portugal, Romania, Spain, and the United Kingdom. Investigators worked together to disrupt the forum’s infrastructure and identify participants.
Authorities believe the operation disrupted a key platform used for cybercrime activity. The forum allowed criminals to obtain and monetize stolen personal and banking information. Investigators continue to analyze the seized records to identify additional suspects.
Officials also aim to trace financial activity connected to the forum’s operations. Investigators expect the collected evidence to support further criminal cases. Meanwhile, authorities continue cooperation across agencies to track remaining cybercrime networks.
Data Breaches Continue to Threaten Crypto Industry
The shutdown follows rising concerns about data leaks affecting the cryptocurrency sector. Over the past year, cybercriminal groups increasingly targeted exchange credentials and insider data. These breaches often enable social engineering attacks and financial fraud.
In May 2025, criminals reportedly bribed overseas contractors to access Coinbase internal systems. The breach exposed customer information that criminals could exploit in phishing or extortion attempts. The incident highlighted weaknesses in third-party service management.
Around the same period, hackers breached LockBit’s dark web affiliate panel. The attack exposed nearly 60,000 Bitcoin addresses connected to the ransomware network. Investigators later analyzed the data to track ransom payments and criminal infrastructure.
More recently, threats also targeted individual crypto traders. On February 23, a trader known as TraderSZ reported an extortion attempt linked to a former Revolut employee. The attacker threatened to expose personal information unless the victim paid a ransom.
