Canadian authorities have arrested a man suspected of being the founder of Leakedsource.com website, and for using users’ personal information for his personal profit. Officially, Jordan Evan Bloom is being accused of unauthorized use of computer, possession of property obtained by crime, mischief to date, and selling of personal data. The accused cyber-criminal is a 27-year-old male from Canada who has greatly profited from people’s information.
Jordan Evan Bloom obtained credentials from the dark web and sold them thru Leakedsource.com
If you are not familiar with Leakedsource.com, the website collected passwords and other valuable information. The data was gathered from many of the massive security breaches that have occurred over the years. In total, the controllers of the website are assumed to have had the control over 3 million personal records, and they did not hesitate to put this information up for sale. For certain fees, this information was sold and finally, lead to profits of approximately $247 thousand.
Using Leakedsource.com used to be very simple. Interested buyers would have to type in a specific email addresses and the site would determine whether they have any information, related to that account. Controllers of Leakedsource.com were smart enough to require fees before passwords are revealed.
The Leakedsource.com started its shady business in 2015 and it took a rather long time for it to be shut down. This only happened in 2017, while the Russian version is still available today. Even though the authorities only managed to stop the activity of Leakedsource.com only last year, the operation leading up to this result started in 2016.
The Royal Canadian Mounted Police (RCMP) indicated to have become suspicious of this website after one revelation: the servers of the domain were hosted in Quebec. The operation was called “Project Adoration” and the Canadian authorities finally managed to seize the servers of Leakedsource.com in January of 2017. As expected, the servers contained an impressive amount of credentials, stolen during some of the most disturbing data leakages.
You might have tried similar services to check whether your email address has been involved in any of the data breaches. However, services like HaveIBeenPwned.com are considered to be legitimate because validates users. Of course, the devious Leakedsource.com did no such thing.
Yesterday, on 15th of January, Bloom made his first appearance in the court house. The police believe that he is responsible for obtaining the identity accounts from the dark web and selling them through the website Leakedsource.com. Canadian authorities worked together with the Dutch Police and the FBI.
Source: cbc.ca.
