LeakedSource.com, a website which aggregates and publishes data from data breaches has gone offline, allegedly due to a police raid. All its social media accounts have disappeared too.
The site allows anyone to search through it to see if they are at risk of fraud or theft due to their login credentials being out in the wild.
The website has made no official statement, but a Pastebin post lifted from a forum thread made shortly after the raid (copied from this forum post), claims the site has been raided by law enforcement and all its data had been seized.
"Leakedsource is down forever and won't be coming back. Owner raided early this morning. Wasn't arrested, but all SSDs got taken, and Leakedsource servers got subpoenaed and placed under federal investigation," the post claims. "If somehow he recovers from this and launches LS again, then I'll be wrong. But I am not wrong."
The people who run LeakedSource.com have gone to great lengths to highlight that it was in no way involved in hacking. They say they were merely collecting and uploading data found on Dark Web sites and forums to its database of account credentials which had been dumped by others.
Those who run the site had notified the world of a number of breaches, including those at Twitter, Dota2 and Weebly. They also took much criticism for its policy of letting anyone look up stolen account credentials, rather than letting the account owners know their information had been added.
Ilia Kolochenko, CEO of web security company High-Tech Bridge told SC Media UK: “In the epoch of upcoming GDPR enforcement, existence of similar public services is very unlikely. It's difficult to say if the shutdown will bring more good than harm, however some negative consequences are foreseeable. Now cyber-criminals will create alternatives in the Dark Web, precluding victims and law enforcement from tracking and investigating new data breaches. Probably a government should create a similar resource, but without exposing personal data to everyone – people should be eligible to know if their data is stolen and may be used against them."