Security News > 2021 > September > RaidForums data marketplace accidentally exposes private staff page
Underground marketplace and hacker forum, RaidForums, recently exposed internal pages from its website, meant for staff members only.
RaidForums is a data breach marketplace where threat actors often sell or leak illicitly obtained data dumps.
RaidForums is an underground place where private databases obtained from data breaches, vulnerability exploits, and credit card information sets are illegally traded by threat actors, or sometimes leaked for free.
On RaidForums, the "Staff General" section is typically restricted to internal staff members only, but in an ironic twist of fate, this private section was accidentally left open for viewing by anyone.
The note contains tips on using password managers, enabling two-factor authentication for an account, and using VPNs. "Create a false personality, use it when signing up to services that ask for this information, or even just use the information of celebrities or random people," suggests the note posted by a RaidForums admin.
Other topics seen in the private area have included discussions on bans, the preferred place for hosting staff chat, and miscellaneous requests.