Cyber Incident Victim: dBforums

In July 2016, hackers breached the media company Penton and stole databases from multiple online forums, including Web Hosting Talk, Mac Forums, HotScripts, dBforums, and A Best Web. The intrusion occurred on July 4, 2016, compromising 1,442,602 user accounts containing email addresses, usernames, and passwords. The stolen data appeared for sale on the dark web marketplace The Real Deal by an individual using the alias "uid0," who listed the combined databases for 7.2 bitcoin (approximately $4,752 at the time). Security researchers from LeakedSource, a data breach monitoring service, independently verified the breach and disclosed it publicly on an unspecified Friday evening following the incident. Analysis confirmed the passwords were hashed using MD5 with salting, though LeakedSource reported cracking approximately 60% of the passwords within two hours due to MD5's cryptographic weaknesses. The attacker's methods for infiltrating Penton's systems were not detailed in available reports.

The incident exposed users across all five forums to credential-stuffing attacks and account takeovers, particularly given the prevalence of password reuse. LeakedSource's disclosure urged affected users to immediately change passwords on the compromised forums and any other platforms where they reused credentials. No statements from Penton or the individual forum operators regarding remediation efforts, forensic investigations, or user notifications were documented in the provided sources. The sale listing remained active on The Real Deal at the time of reporting, though uptake by buyers was unconfirmed. The breach highlighted systemic risks associated with outdated hashing algorithms and centralized database management for interconnected web properties under single corporate ownership.