The latest iteration of the notorious BreachForums hacking site has suffered a data breach, with its user database table containing over 323,000 member records leaked online. The database includes member display names, registration dates, IP addresses, and other internal information.
While the majority of the IP addresses are mapped to a local loopback address, over 70,000 records contain public IP addresses that could be valuable to law enforcement and cybersecurity researchers. The leak also includes the site’s PGP private key, which is passphrase-protected, preventing it from being used to sign messages.
The BreachForums administrator, known as “N/A,” has acknowledged the breach, stating that the user database and PGP key were temporarily stored in an unsecured folder during the site’s restoration process in August 2025, and were downloaded only once. While the administrator advises members to use disposable email addresses, the database still poses a potential OPSEC concern and could be of interest to authorities investigating the site’s activities.