FBI Seizes LeakBase Cybercrime Forum in Global Crackdown, Securing Data of 142,000 Users
scsecMarch 13, 20262 Mins read 
The Federal Bureau of Investigation (FBI) has taken down the cybercrime forum LeakBase, a platform widely used by hackers to trade stolen data and hacking tools. The seizure was part of a coordinated international law enforcement effort led by Europol under an operation known as Operation Leak.
Authorities carried out the operation on March 3 and 4, during which the FBI seized two domains associated with the forum and replaced them with official seizure notices. The domains now display a banner stating that the website has been confiscated by the FBI as part of an international investigation.
Law enforcement agencies also executed search warrants, conducted interviews, and made arrests in multiple countries. The operation involved authorities in the United States, Australia, Belgium, Poland, Portugal, Romania, Spain, and the United Kingdom.
According to officials, the forum’s entire database has been secured. This includes user accounts, forum posts, credit information, private messages, and IP logs. Investigators stated that all collected data will be preserved and used as evidence in future criminal cases. Authorities also warned that any attempts to interfere with the seized website could lead to additional criminal charges.
The forum’s domain infrastructure has also been transferred to FBI-controlled nameservers, specifically ns1.fbi.seized.gov and ns2.fbi.seized.gov, which are commonly used when the agency confiscates online domains.
Law enforcement authorities conducted approximately 100 enforcement actions worldwide during the operation, including measures against 37 of the platform’s most active users. These actions included arrests, property searches, and “knock-and-talk” visits aimed at gathering evidence and discouraging further criminal activity.
LeakBase had been active since 2021 and was initially launched with support from the ARES threat group. Over time, the forum grew rapidly, eventually reaching more than 142,000 registered members. Its growth accelerated after the shutdown of the Breached hacker forum, which previously served a similar role in the cybercrime ecosystem.
The platform allowed users to access leaked databases and provided a marketplace where cybercriminals could sell stolen information, exploits, and other illicit services. It also featured an escrow payment system to facilitate transactions between buyers and sellers. In addition to trading stolen data, the forum hosted discussions about programming, hacking techniques, social engineering tactics, cryptography, and operational security.
The takedown of LeakBase follows a series of major law enforcement actions against cybercrime communities in recent years. Authorities previously dismantled RaidForums in 2022 and BreachForums in 2023, both of which were prominent marketplaces for stolen data. The founder of BreachForums was later convicted and sentenced in 2025.
Officials say the operation has now moved into a prevention phase aimed at discouraging further cybercriminal activity and increasing awareness of the consequences associated with participating in online crime networks.
1 Comment
Leave a Reply
Related Articles
Iran-Linked Handala Hackers Claim Massive Cyberattack on Stryker While Verifone Denies Breach
An Iran-linked hacking group known as Handala Hack Team has claimed responsibility...
Iran-Linked MuddyWater Hackers Target U.S. Networks with New Dindoor Backdoor Amid Rising Tensions
Security researchers have uncovered a new cyber campaign by an Iran-linked threat...
Iran-Linked Dust Specter Targets Iraqi Officials with New SPLITDROP and GHOSTFORM Malware Campaign
A suspected Iran-linked threat group has been tied to a cyber-espionage campaign...
AI Agents Are the Enterprise’s Fastest-Growing Identity Risk
AI Agents and the Rise of Identity Dark Matter in the Enterprise...
This operation shows how international cooperation between agencies like the FBI and Europol is becoming increasingly important in combating cybercrime. Platforms that facilitate the trade of stolen data and hacking tools pose serious risks to individuals, companies, and governments. The seizure of LeakBase and the preservation of its database could lead to further investigations and potentially expose many cybercriminal networks operating online.