The alleged administrator of the LeakBase cybercrime discussion board has been arrested by Russian regulation enforcement authorities, state media reported Thursday.
Based on TASS and MVD Media, a information web site linked to the Russian Inside Ministry, the suspect is a resident of town of Taganrog. The suspect is alleged to have been detained for creating and managing a felony web site that allowed stolen private databases to be traded since 2021.
As well as, technical tools and different objects of evidentiary worth have been confiscated throughout a search of the suspect’s residence.
“The platform hosted tons of of tens of millions of consumer accounts, financial institution particulars, usernames, and passwords, in addition to company paperwork obtained by means of hacking,” mentioned Irina Volk, an official spokesperson for the Russian Ministry of Inside Affairs. “Greater than 147,000 customers registered on the discussion board may purchase and promote this knowledge, in addition to use it to commit fraudulent acts in opposition to residents.”
LeakBase was dismantled in a regulation enforcement operation earlier this month. The U.S. Division of Justice (DoJ) mentioned the cybercrime discussion board was one of many world’s largest hubs for cybercriminals to purchase and promote stolen knowledge and cybercrime instruments.
This included tons of of tens of millions of account credentials and monetary data reminiscent of credit score and debit card numbers, banking account and routing data, usernames, and related passwords that could possibly be abused to conduct account takeover assaults.
The platform had over 142,000 members and greater than 215,000 messages between members as of December 2025. Guests to the clearnet web site have been greeted with a seizure banner that mentioned “All discussion board content material, together with customers’ accounts, posts, credit score particulars, non-public messages, and IP logs, has been secured and preserved for evidentiary functions.”
 |
| LeakBase seizure discover issued by Russia’s Ministry of Inside Affairs (MVD) |
LeakBase is the work of a menace actor who goes by the net aliases Chucky, beakdaz, Chuckies, and Sqlrip. In experiences printed following the takedown of the discussion board, KELA and TriTrace Investigations linked Chucky to a 33-year-old particular person from Taganrog.
Days after the web site was seized, LeakBase got here again on-line on the area “leakbase[.]bz” with DDoS safety offered by DDoS-Guard, per data shared by a TriTrace Investigations consultant with The Hacker Information. DDoS-Guard is a Russian supplier of bulletproof internet hosting providers.
Guests to the positioning are actually greeted by a message that states: “Throughout a particular operation by the Russian Ministry of Inside Affairs’ Bureau of Particular Technical Occasions, the LeakBase discussion board was completely closed. Unlawful acts within the discipline of pc data, in addition to infringements on the constitutional rights and freedoms of people and residents, entail felony legal responsibility in accordance with Russian regulation.”
