Menu
Browse

Cyber Threat Actor: BVM

Aliases: 2 aliases
Actor Type Location Known Incidents
 Icon
Sensationalist
6 incidents
Profile

BVM, operating under aliases @TehBVM and TehBVM, is a threat actor linked to multiple cyber intrusions targeting online communities and platforms between 2015 and 2019. The actor’s activities primarily involved unauthorized access to user databases and website defacements, with a recurring focus on gaming forums, eSports platforms, and entertainment-related communities. Publicly reported incidents demonstrate a pattern of exploiting credential reuse and software vulnerabilities to compromise targets, often followed by public disclosure or data leaks. BVM’s operations lacked consistent indications of financial motivation, with some incidents appearing driven by opportunism or a desire for notoriety, such as emulating other hackers’ defacement tactics.

The actor’s techniques frequently leveraged credential stuffing attacks using passwords from prior breaches, notably hijacking Reddit moderator accounts in 2016 by exploiting reused credentials and the platform’s absence of two-factor authentication. This campaign enabled widespread subreddit takeovers, defacements, and moderator removals across high-profile communities. BVM also targeted gaming platforms like FeverClan and Exile Mod, potentially exploiting vulnerabilities in third-party software such as VBulletin to extract user data including hashed passwords and email addresses. While the actor did not develop custom malware, their operations relied on cross-referencing breached credentials and publicly available tools. Significant incidents include the 2019 CafePress breach exposing 23 million accounts and the 2016 Reddit hijackings, which disrupted major communities through CSS modifications and defacement messages claiming credit. No verifiable affiliations with state actors or criminal groups have been publicly attributed to BVM.

Incidents
Attributed incidents available to members
6 incidents
Sources
Sources available to members
2 sources