Cyber Incident Victim: A Best Web

On July 4, 2016, hackers breached the media company Penton, compromising databases for multiple online forums including Web Hosting Talk, Mac Forums, HotScripts.com, dbForums, and A Best Web. The attackers exfiltrated 1,442,602 user records containing email addresses, usernames, and passwords. The stolen passwords were protected using salted MD5 hashing, though this algorithm was already recognized as cryptographically weak. An individual using the alias "uid0" subsequently advertised the combined databases for sale on the dark web marketplace The Real Deal, pricing the data at 7.2 bitcoin (approximately $4,752 at the time). LeakedSource, a data breach monitoring service, independently verified the intrusion and disclosed the incident publicly on an unspecified Friday evening following the breach. The service confirmed the attack vector targeted Penton’s infrastructure, impacting all five affiliated websites simultaneously.

LeakedSource analysts reported successfully cracking approximately 60% of the stolen password hashes within two hours due to MD5’s vulnerabilities, exposing plaintext credentials for a significant portion of affected accounts. The cumulative theft impacted 1.4 million users across the compromised platforms, with no evidence suggesting financial data or additional personal information was accessed. Following verification of the breach, LeakedSource urged users of all five forums—including A Best Web—to immediately change their passwords and avoid reusing credentials across other services. The sale listing on The Real Deal remained active as of the initial disclosure date, though subsequent purchaser activity or data dissemination was not confirmed in available reports. No official statements from Penton or detailed remediation actions by the affected forums were documented in the sourced material.