Alpha Bay Shut down Coverup and Suspicious Suicide Before Extradition

Alpha Bay Shut down Coverup and Suspicious Suicide Before Extradition

During the Alpha Bay Shut Down

About a week ago a notorious marketplace that is said to be the replacement for Silkroad, Alpha Bay, went offline. When Alpha Bay shut down many people started speculating why the site went down but the attention was mitigated to a degree. Mods came onto their Reddit sub and said nothing was wrong and they were simply migrating their data to another server. A few days later and Bitcoin deposits and many other deposits were being shuffled between random accounts, or laundered, to different wallets. At this point the moderators on Reddit became quiet.

A few days after that and someone comes on Reddit claiming to have doxed the owner and said he extorted $45,000 in Bitcoin from him. He tried to extort more but was ignored after the first payment. Many on Reddit called the man who claimed to have extorted the owner a liar, however, his story adds up. Media outlets are all spouting news of a man, Alexandre Cazes, being detained in Thailand. Hours before being extradited for his crimes, he committed suicide in his cell. Alexandre Cazes appears to have been a major player, some claim he was the co-founder.

Alexandre Cazes Commits Suicide, but was he the owner? Did he cause the Alpha Bay shut down?

Alpha Bay Shut Down

Alpha Bay Shut Down

After committing suicide authorities found many of his assets that point to his involvement with Alpha Bay. Alexandre Cazes seems to have been somewhat of an expert when it came to Bitcoin, money laundering and fraud. It appears he was unaware he was going to be caught but speculated it at the very least.

The Bangkok Post, citing Thai police sources, reported that Cazes had been living in Thailand for about eight years. Thai authorities also impounded “four Lamborghini cars and three houses worth about 400 million baht ($11.7 million) in total. – Arstechnica

This is an ongoing investigation and the full story will take some time to reveal, and no one knows if he was actually the owner of Alpha Bay, however, the evidence seems to be telling a pretty clear picture that he was at least up there with the owner, if not the owner himself.

Originally from Quebec, Mr Cazes was at the centre of an FBI investigation, accused of being an administrator and co-founder of AlphaBay.

The website sold illegal goods, class A drugs, pornography, stolen credit cards and weapons.

The website, which was shut down on 5 July, had up to $800,000 (£611,000) of transactions every day, according to researchers. The Independent

You can read more about the Alpha Bay shut down at the above-quoted links as well as these informative articles below.

https://coconuts.co/bangkok/news/canadia…e-custody/

https://themerkle.com/suspected-#-admin-…-thailand/

Here is more Hack.Training News

Iron Horse Jeans Hacked, Database Leaked

Iron Horse Jeans (http://ironhorsejeans.com/) was hacked today by someone known as TO0R on Hackforums.net. While the damage to the site overall looks minimal, the hacker has made a small note on the website stating he will leak the database of the website. “FAQS Help We been Hacked by the Legend TO0R http://www.hackforums.net/member.php?action=profile&uid=2494288

View post on imgur.com

 

Iron Horse Jeans Hacked, their database is soon to be leaked from the web hosts servers, according to the deface on the FAQ portion of the website.

Anonymous Attacks Israel: Vows Electronic Holocaust Against Israel Website Attacks

Anonymous Attacks Israel: Vows Electronic Holocaust Against Israel Website Attacks

Anonymous attacks Israel #OPisrael

Anonymous #OPisrael

Anonymous attacks Israel by launching Operation Israel today (#OPisrael) and issuing illegal take downs of Israeli websites. They announced the attack on March 5, 2015 on a Youtube video. Anonymous is a group without borders, a group without leaders and we suspect the attack is mainly from Anonymous members in Arab countries, as well as some European countries who support Palestine. Anonymous says the are going to enact an Electronic Holocaust against Israeli websites, including Government websites, banking websites and more. They claim the attacks are due to the ‘Zionist Nations’ inability to find a peaceful resolution in the middle east, they mention the attacks Israel has done in Gaza with more than 1000 people killed in the past year as a major motivator for the attack. Anonymous also gained access to over 6000 routers in Israel, and has leaked the login credentials online.

Anonymous attacks Israel once a year at least, planned on the 7th of April. Anonymous attacks Israel on this day every year according to the video. So far, it seems they have gained access to Israeli politicians as well as citizens bank accounts, router credentials and social media logins.

Confirmed: Anonymous Attacks Israel, Sites Taken Down in #OPIsrael

  1. http://www.ladpc.gov.il/ : Local Authorities Data Processing Center Ltd
  2. http://www.kranoth.gov.il/ : site of the fourth largest bank in Israel
  3. http://www.edu-negev.gov.il/ : Elisha Babayof-Ministry of Education – Israel
  4. http://www.court.gov.il/ : Israeli Supreme Court
  5. http://edu.gov.il/ : david elezra-Ministry of Education – Israel
  6. http://www.cms.education.gov.il/ : Ministry of Education
  7. http://www.knesset.gov.il/ : Israeli Knesset
  8. http://www.defence.gov.il/ : Main site of the israeli’s ministry of defence
  9. http://www.hosting.co.il/ : Israeli Hosting & Domains
  10. http://www.aa.gov.il/ : The Israeli Antitrust Authority
  11. http://www.idf.gov.il/ : Israel Defense Forces
  12. http://www.dover.idf.il/: Another Israel Defense Forces
  13. http://www.antitrust.gov.il : The Israeli Antitrust Authority
  14. http://www.dev.cbs.gov.il/ : Israeli Shifra Har
  15. http://www.immigration.gov.il/ Israeli Immigration
  16. http://www.index.gov.il/ : Ministry of Israeli Immigration
  17. http://www.emus.gov.il/ : Israeli finance
  18. http://www.ifts.gov.il/ : Israeli Integrated Foreign Trade System
  19. http://www.ecom1.gov.il/ : Another site for israeli ministry of Finance
  20. http://www.iiop.gov.il/ : Israel Institute of Productivity
  21. http://www.ejobs.gov.il/: Israeli government employment
  22. http://www.int.gov.il/ : State of Israel-Mail
  23. http://www.israel-mfa.gov.il/ : Israel Ministry of Foreign Affairs
  24. http://www.itpolicy.gov.il/ : Israel Information Technology
  25. http://www.mfah.gov.il/ : Ministry of Foreign Affairs – Hebrew.
  26. http://www.mofa.gov.il/ : Israeli Ministry of Foreign Affairs
  27. http://www.ocs.moital.gov.il/ : Ministry of Industry and Trade
  28. http://www.msh.gov.il/ : Israil Civil service reform
  29. http://www.telaviv.police.gov.il/ : Tel Aviv police
  30. http://www.pwd.gov.il/ : Israil Public Works Department
  31. http://www.sep.gov.il/ : Israel Economic and Tourism
  32. http://www.spring.gov.il/ : Haifa licensing and supervision of a firearm
  33. http://www.tayman-child.gov.il/ : Yemen Cultural Forum
  34. http://www.dev.cbs.gov.il/ : Israel Shifra Har
  35. http://www.eqred.gov.il/ : Israel Earthquake Center
  36. http://www.israel-mfa.gov.il/ : Another Israel Ministry of Foreign Affairs site
  37. http://www.tipa.gov.il/ : Israel Water Preservation
  38. http://www.kids.gov.il/ : Israeli government for children safe surfing content
  39. http://www.tofes.gov.il/ : Another Israeli Ministry of Finance site
  40. http://www.pm.gov.il/ : Office of The Prime Minister
How to Backtrace DarkComet to Find the Hacker Behind the RAT

How to Backtrace DarkComet to Find the Hacker Behind the RAT

How to Backtrace DarkComet to Find the Hacker Behind the RAT

 

How to Backtrace DarkComet to Find the Hacker Behind the RAT

How to Backtrace DarkComet to Find the Hacker Behind the RAT

Have you ever been infected with a virus and wanted to backtrace DarkComet? Want to locate the hacker behind the virus, which in most cases is a RAT? Well, if the attacker used DarkComet, one of the most common Remote Administration Tools available, then this guide will help you backtrace DarkComet. You will be able to find the attackers IP address or hostname as well as his password. Once you have done this, you can report them to the proper authorities. Best people to contact would be the DNS host or web host the hacker used.

Backtrace DarkComet to Find the Hacker

The coder of the infamous and widely used DarkComet DarkCoderSc went whitehat after years of his DarkComet release. After he had gone white hat, he released a tool that would allow you to backtrace someone with an unencrypted DC RAT infection/server.

You can download it from here: https://mega.co.nz/#!apkmECqb!K2C5bFYIYoQYydaNV74n6kN9lMf5v9VRvSv_1t5qeLU

Here is the Virus Total Scan: https://www.virustotal.com/en/file/9d347e99be65d5a7d40d551676be1546519cdfdc853c947ef065ec64e6e8fb83/analysis/1425314491/

How to backtrace an IP and password of a DarkComet Hacker with this tool:

DarkComet 5.1 and newer (includes the latest v5.3.1)
Select the first record in the combo box, click the Load/Extract button and locate the server.

DarkComet 5.0
Select the second record in the combo box, click the Load/Extract button and locate the server.

DarkComet 4.2F
Manually add the string “#KCMDDC42F#-” (without quotes) in the combo box, click the Load/Extract button and locate the server.

DarkComet 4.2
Manually add the string “#KCMDDC42#-” (without quotes) in the combo box, click the Load/Extract button and locate the server.

DarkComet 4.0 and DarkComet 4.1
Manually add the string “#KCMDDC4#-” (without quotes) in the combo box, click the Load/Extract button and locate the server.

DarkComet 2.x to DarkComet 3.x
Manually add the string “#KCMDDC2#-” (without quotes) to the combo box, click the Load/Extract button and locate the server.

How to Backtrace DarkComet to Find the Hacker Behind the RAT

How to Backtrace DarkComet to Find the Hacker Behind the RAT

Note: If you wish to remove DarkComet or BlackShades RATs instead of backtracing them or using an antivirus, you can do so with these removers, even if the files are undetected by antivirus: https://www.phrozensoft.com/removers.html

We highly recommend that after you backtrace DarkComet and get rid of the infection that you run a thorough virus scan on your PC.