US and EU police seize LeakBase, a site where crooks share stolen passwords and hacking tools

Published: 5 March 2026
leakbase-shut-down
Image by Cybernews.

European and US law enforcement have shut down LeakBase’s database, which prosecutors called “one of the world’s largest online forums for cybercriminals” for sharing stolen passwords and hacking tools.

LeakBase had established itself as a central hub in the cybercrime ecosystem, specializing in the trade of leaked databases and so-called “stealer logs” – archives of stolen credentials harvested through infostealer malware, Europol said.

Accessible on the open web and operating in English, the platform, active since 2021, combined elements of a forum and discussion board, enabling cybercriminals to buy, sell, and exchange compromised data.

ADVERTISEMENT

According to the officials, the seized site’s database has over 142,000 members who have thus far shared more than 215,000 messages between them.

Of course, the prosecutors – never too shy to brag – are claiming LeakBase is one of the world’s largest cybercrime forums out there. Cybernews researchers, on the other hand, say the site wasn’t too popular, even though it would be in the top 10.

jurgita justinasv Izabelė Pukėnaitė vilius Ernestas Naprys Gintaras Radauskas
Don't miss our latest stories on Google News. Add us as your Preferred Source on Google
Follow us

LeakBase had a continuously maintained archive of hacked databases, including hundreds of millions of account credentials, credit card numbers, and banking account and routing information.

Europol said that roughly 100 “enforcement actions” were taken globally, including measures taken against the top 37 active users of the forum.

“What began as a shadowy forum for stolen data has now been dismantled, and those who believed they could hide behind anonymity are being identified and held accountable,” said Edvardas Šileris, head of Europol’s Cybercrime Centre.

Check if your data has been leaked

Find out if your email, phone number or related personal information might have fallen into the wrong hands.
18,611,353,922
Breached accounts
36,030
Breached websites

“This is a clear message to cybercriminals everywhere: if you traffic in other people’s stolen information, law enforcement will find you and bring you to justice.”

Now, LeakBase’s website displays a seizure notice, saying that the site’s contents, private messages, and IP address logs have been preserved.

ADVERTISEMENT

Interestingly, despite being an international platform, LeakBase reportedly had an internal rule that prohibited the sale or publication of data related to Russia. This could mean the forum administrators were based in that particular country and didn’t want any issues with Russia’s law enforcement agencies.

Unlock more exclusive Cybernews content on YouTube.

Share
Post
Share
Share
Share
More from Cybernews
Companies using Fable 5 beware: it’s collecting your data, and there are no exceptions
World’s leading mathematicians ridicule AI hype in high-IQ declaration
Democrats are far more worried than Republicans that AI will take jobs, new poll finds
Europe’s tech revolution feels like Soviet déjà vu
New York demands advertisers use “synthetic performer” label or else
The surprising way Elon Musk is powering your next holiday flight
ADVERTISEMENT
Leave a Reply

Your email address will not be published. Required fields are markedmarked