Security Magazine logo
search
cart
facebook twitter linkedin youtube
  • Sign In
  • Create Account
  • Sign Out
  • My Account
Security Magazine logo
  • NEWS
    • Security Newswire
    • Technologies & Solutions
  • MANAGEMENT
    • Leadership Management
    • Enterprise Services
    • Security Education & Training
    • Logical Security
    • Security & Business Resilience
    • Profiles in Excellence
  • PHYSICAL
    • Access Management
    • Fire & Life Safety
    • Identity Management
    • Physical Security
    • Video Surveillance
    • Case Studies (Physical)
  • CYBER
    • Cybersecurity News
    • More
  • BLOG
  • COLUMNS
    • Cyber Tactics
    • Leadership & Management
    • Security Talk
    • Career Intelligence
    • Leader to Leader
    • Cybersecurity Education & Training
  • EXCLUSIVES
    • Annual Guarding Report
    • Most Influential People in Security
    • The Security Benchmark Report
    • The Security Leadership Issue
    • Top Guard and Security Officer Companies
    • Top Cybersecurity Leaders
    • Women in Security
  • SECTORS
    • Arenas / Stadiums / Leagues / Entertainment
    • Banking/Finance/Insurance
    • Construction, Real Estate, Property Management
    • Education: K-12
    • Education: University
    • Government: Federal, State and Local
    • Hospitality & Casinos
    • Hospitals & Medical Centers
    • Infrastructure:Electric,Gas & Water
    • Ports: Sea, Land, & Air
    • Retail/Restaurants/Convenience
    • Transportation/Logistics/Supply Chain/Distribution/ Warehousing
  • EVENTS
    • Industry Events
    • Webinars
    • Solutions by Sector
    • Security 500 Conference
  • MEDIA
    • Videos
      • Cybersecurity & Geopolitical Discussion
      • Ask Me Anything (AMA) Series
    • Podcasts
    • Polls
    • Photo Galleries
  • MORE
    • Call for Entries
    • Classifieds & Job Listings
    • Continuing Education
    • Newsletter
    • Sponsor Insights
    • Store
    • White Papers
  • EMAG
    • eMagazine
    • This Month's Content
    • Advertise
  • SIGN UP!
CybersecurityManagementSecurity NewswireSecurity Enterprise ServicesSecurity Leadership and ManagementLogical SecuritySecurity & Business ResilienceSecurity Education & TrainingCybersecurity News

RaidForum dismantled by joint security operation

By Maria Henriquez
Raid-forums-Europol.jpg

Image courtesy of Europol

April 13, 2022

RaidForums, the popular online forum that facilitated the sale of stolen data from millions of people worldwide, was shut down and its domain seized by U.S. law enforcement in coordination with Europol and agencies in several other countries.

Operation Tourniquet was coordinated by Europol to support the United States, United Kingdom, Sweden, Germany, Portugal and Romania in shutting down and seizing the infrastructure of RaidForums.

All partners worked closely together for a year to identify the key targets, which included defining different roles that the target played within the illegal forum (the administrator, the money launderers, the users in charge of stealing/uploading the data, and the buyers); and, establishing a coordinated strategy to prepare for the final step in the investigation.

Launched in 2015, the illegal marketplace was considered one the world's biggest hacking forums, with more than a half million users. According to the Department of Justice, at the time of its founding, the marketplace operated as an online venue for organizing and supporting forms of electronic harassment, including by "raiding" – posting or sending an overwhelming volume of contact to a victim's online communications medium – or "swatting" – the practice of making false reports to public safety agencies of situations that would necessitate a significant, and immediate armed law enforcement response.

RaidForums quickly became famous for selling access to high-profile data breaches with victims across several industries. The databases contained troves of personally identifiable information (PII), including social security numbers, bank account numbers, routing information, credit cards, usernames and associated passwords.

Chris Morgan, Senior Cyber Threat Intelligence Analyst at Digital Shadows, says, "Raidforums was a consistent and stable platform that had withstood the test of time, enduring many years and allowing its members to buy and sell data, largely without fear of disruption."

However, RaidForums was not viewed as an esteemed forum in the same light as other cybercriminal forums like XSS and Exploit, with a greater number of low-value or empty posts being present on Raidforums, Morgan explains. "Moderation was certainly more lenient, with many members of the Russian cybercriminal community — to which is often shared many overlaps in membership and content — often sharing a sentiment that RaidForums was a good place for free leaked databases but held little value for more serious actors."

The seizure of RaidForums serves as a deterrent to people considering launching similar forums and marketplaces, says Casey Ellis, Founder and CTO at Bugcrowd. It will also prevent its members from further using the platform to traffic in stolen data from corporations, universities and governmental entities, including databases containing the sensitive, private data of millions of individuals worldwide.

Yet, Morgan, Ellis and other security leaders predict that the takedown of RaidForums is unlikely to result in a significant disruption to overall cybercriminal activity. John Bambenek says, "The seizure of an individual forum will not have much long-term impact; however if the justice department can keep up the pace of operations against many of these forums, it will provide a very strong disruption to the overall cybercrime ecosystem."

Morgan says a natural power vacuum will occur within the cybercriminal community, "with many of Raid's membership likely to flock to alternative platforms," he explains. Several forums already have the foundation to act as a home for RaidForum's members, and many of them have been styled and constructed in a similar fashion. 

Ellis believes cybercriminals will simply evolve their techniques to maintain operational security and avoid detection. "The other counterintuitive consequence of this action is that it essentially burns a valuable tool used by those in counterintelligence, who infiltrate forums like this one, build fake personas, and use them to gather tactical breach and risk intelligence."

KEYWORDS: cyber security data breach data protection information security risk management

Share This Story

Looking for a reprint of this article?
From high-res PDFs to custom plaques, order your copy today!

Maria Henriquez is a former Associate Editor of Security. She covered topics including cybersecurity and physical security, risk management and more.

Recommended Content

JOIN TODAY
To unlock your recommendations.

Already have an account? Sign In

  • Security's Top Cybersecurity Leaders 2024

    Security's Top Cybersecurity Leaders 2024

    Security magazine's Top Cybersecurity Leaders 2024 award...
    Security Enterprise Services
    By: Security Staff
  • cyber brain

    The intersection of cybersecurity and artificial intelligence

    Artificial intelligence (AI) is a valuable cybersecurity...
    Logical Security
    By: Pam Nigro
  • artificial intelligence AI graphic

    Assessing the pros and cons of AI for cybersecurity

    Artificial intelligence (AI) has significant implications...
    New Security Technology
    By: Charles Denyer
Subscribe For Free!
  • Security eNewsletter & Other eNews Alerts
  • eMagazine Subscriptions
  • Manage My Preferences
  • Online Registration
  • Mobile App
  • Subscription Customer Service

More Videos

Sponsored Content

Sponsored Content is a special paid section where industry companies provide high quality, objective, non-commercial content around topics of interest to the Security audience. All Sponsored Content is supplied by the advertising company and any opinions expressed in this article are those of the author and not necessarily reflect the views of Security or its parent company, BNP Media. Interested in participating in our Sponsored Content section? Contact your local rep!

close
  • Crisis Response Team
    Sponsored byEverbridge

    Automate or Fall Behind – Crisis Response at the Speed of Risk

  • Perimeter security
    Sponsored byAMAROK

    Why Property Security is the New Competitive Advantage

  • Duty of Care
    Sponsored byAMAROK

    Integrating Technology and Physical Security to Advance Duty of Care

Popular Stories

Pills spilled

More than 20,000 sensitive medical records exposed

Laptop in darkness

Verizon 2025 Data Breach Investigations Report shows rise in cyberattacks

Computer with binary code hovering nearby

Cyberattacks Targeting US Increased by 136%

White post office truck

Department of Labor Sues USPS Over Texas Whistleblower Termination

Internal computer parts

Critical Software Vulnerabilities Rose 37% in 2024

2025 Security Benchmark banner

Events

September 29, 2025

Global Security Exchange (GSX)

 

November 17, 2025

SECURITY 500 Conference

This event is designed to provide security executives, government officials and leaders of industry with vital information on how to elevate their programs while allowing attendees to share their strategies and solutions with other security industry executives.

View All Submit An Event

Products

Security Culture: A How-to Guide for Improving Security Culture and Dealing with People Risk in Your Organisation

Security Culture: A How-to Guide for Improving Security Culture and Dealing with People Risk in Your Organisation

See More Products

Related Articles

  • hacking cyber

    Kmart suffers cyberattack by the Egregor ransomware operation

    See More
  • alert-fatigue-freepik1170x658.jpg

    Alert fatigue crippling security operation centers

    See More
  • Gavel on keyboard

    Administrator of 911 S5 botnet arrested, botnet dismantled

    See More
×

Sign-up to receive top management & result-driven techniques in the industry.

Join over 20,000+ industry leaders who receive our premium content.

SIGN UP TODAY!
  • RESOURCES
    • Advertise
    • Contact Us
    • Store
    • Want More
  • SIGN UP TODAY
    • Create Account
    • eMagazine
    • eNewsletter
    • Customer Service
    • Manage Preferences
  • SERVICES
    • Marketing Services
    • Reprints
    • Market Research
    • List Rental
    • Survey/Respondent Access
  • STAY CONNECTED
    • LinkedIn
    • Facebook
    • YouTube
    • X (Twitter)
  • PRIVACY
    • PRIVACY POLICY
    • TERMS & CONDITIONS
    • DO NOT SELL MY PERSONAL INFORMATION
    • PRIVACY REQUEST
    • ACCESSIBILITY

Copyright ©2025. All Rights Reserved BNP Media.

Design, CMS, Hosting & Web Development :: ePublishing