No announcement yet.

Hackers Leak Thousands of Passwords From Large Private BitTorrent Tracker

  • Filter
  • Time
  • Show
Clear All
new posts

  • Hackers Leak Thousands of Passwords From Large Private BitTorrent Tracker

    I know this broke yesterday and everyone knows it by now. However, the story is more complete, from what I knew at least about the situation.

    In an unprecedented data breach, tens of thousands of usernames and passwords from large private BitTorrent tracker RevTT have been leaked onto the Internet. The attackers, who call themselves Afghanistan Hackers, leaked the user/pass combinations via The Pirate Bay. The initial response from RevTT was to censor all discussion of the data breach, even as hundreds – possibly thousands – of accounts were being used without their owners’ permission.

    Late Tuesday evening European time, an individual set out to share information with the world that he appears to have had in his possession for some time.

    Using the name ‘Afghanis’ he uploaded a torrent file to The Pirate Bay. It pointed to just 675K of data but today the effects are being strongly felt around the private BitTorrent scene.

    “From Civilized Afghan Society, of course we do have stupid Talibans also but we do have very well educated people living in beautiful Kabul City,” a text file with the release reads.

    “RevTT is hacked by Afghanistan Hackers !!!”

    RevTT is short for RevolutionTT, a private BitTorrent tracker that was founded around 6 years ago with a reputation for indexing a wide range of content. It is unclear exactly how many users are on the site since its operators appear to hide stats from regular user view. However, all the indications suggest that there are at least 40,000 and very probably tens of thousands more.

    While the ‘hackers’ claim to have the entire RevTT database along with 50,000 user/pass combinations, the text file uploaded by Afghanis actually contains around 40,000 27,000 19,000 pairs. (see update below)

    After they were uploaded to The Pirate Bay last evening the free-for-all began.

    Very quickly people who had downloaded the torrent started logging into RevTT using not only regular accounts but those of so-called VIPs who have access to exclusive sections of the site.

    While some undoubtedly decided to grab whatever content they could, others carried out other activities including sending out invitations to people who aren’t already members. Worse still, all details of the compromised accounts were available to the intruders including email addresses, statistics and all activity associated with the accounts.

    Needless to say, if users maintained the same username and password on other sites their accounts elsewhere immediately became vulnerable. Judging by the number of users who used the word “password” as their password, the chances of major screw ups seems high.

    After trying to alert site staff, TorrentFreak watched as panicked users learned of the breach and posted their concerns in the forums, begging site staff for information. Site staff responded by quickly removing all discussion of the breach, banning the accounts of people posting in the threads, and eventually posting the notice seen below.

    Of course, people are now wondering how on earth this happened and the answer is far from clear. There are many theories being circulated, including that this wasn’t a ‘hack’ as such but a leak of a database backup, possibly due to a historical admin dispute.

    What is clear however is that according to several reports from users on the site who had their details leaked, the data within the torrent isn’t particularly fresh and could date back some time. Users know this because their user/pass combinations are ones they used previously but have since been changed. There is a lesson to be learned here about changing passwords frequently.

    Now, some 9 hours after the leak, RevTT appears to have been locked down, but the mess this will leave behind is bound to be significant and could even get worse. The ‘hackers’ say that in 1 to 2 weeks they will release more data, what exactly that will be remains to be seen.

    Update: Due to duplicates and other issues the number of leaked accounts actually appears to be less than the 50,000 claimed by the hackers. As time progresses people are looking more closely at the huge list so we’ll revise this figure when more accurate information becomes available.Hackers Leak Thousands of Passwords From Large Private BitTorrent Tracker | TorrentFreak

  • #2
    You should never use the same password at more than one site. Just use password managers like Lastpass or 1Password to manage your passwords and when this happens, you simply won't worry. After places like Dropbox and Blizzard were hacked, I just went full on with Lastpass and now every password I use is a 25-30 mixed alphanumeric with at least 7 symbols... makes it much more different to have any issues at this point.


    • #3
      I think that Afghan hackers is unlikely , with the countrys state of affairs I would think revolutionaires would hack something more meaningful. In light of recent events I would say western intelligence agencies are a more likely culprit

      Just my 2 cents


      • #4
        i saw this on IPT,they also have a all username/pass File list :( please chenge your password Quickly

        Thank you very much SB for Giving me VIP
        if you want any help from me just feel free to PM me Anytime


        • #5
          anyone have more info on
          the historical admin dispute.


          • #6
            Lost my account but I am Satisfied with IPT .


            • #7
              Just checked , my name is on the list, but the password was only valid from end of august 2010 to November 2010.

              Just signed up here as Revtt was my one and only for years, don't think it will recover from this.


              • #8
                I was a member at revtt long time ago.. I found my name and password there...
                Problem is that i use that password quite offen so i had to change it to all my other torrent sites.


                • #9
                  This is why it pays to use a different password for everything. I use a combination of password generators and password storage sites, so if I was to be hacked it would affect one account. Sure it can be annoying having to remember different password, but in the last year hacking user accounts is on the increase. Best to start investing in better passwords and different ones now, especially keep track of email passwords. Too many people signup with accounts and forget the original email password when they need to reset their account password.


                  • #10
                    Ooooh Ooooh, Afghan Hackers do HDbits now, If I can't have it no one can!!! :-D On a side note I hope RevTT does go under. I never liked the staff there, complete dicks.


                    • #11
                      Well, I certainly hope they get it sorted out. Been a member there for a long time. Thankfully my handle wasn't on the list that I could find.


                      • #12
                        The tracker admins' response to concerned users doesn't make them look good. Why censure the discussions? It certainly turns me off trying to get into this tracker anytime soon.

                        On another note, I hope not many members' accounts were compromised. This is why I use a different password for every site login, so at least it's only one account that gets affected.


                        • #13
                          As from checking 7.00am UK time - it's offline another sad day for the BT community
                          Can't see that they can come back from such a huge breach


                          • #14
                            www is down, tracker is up. all users on the list have had their passkeys reset
                            www should be up tomorrow sometime after a few tweaks. just to be clear the DB was NOT hacked.

                            more info once the sites backup
                            Thats from the site.. If the DB was not hacked, then what?


                            • #15
                              Originally posted by ViViDENT View Post
                              Thats from the site.. If the DB was not hacked, then what?
                              If it walks like a duck and it talks like a's probably a duck.

                              If it wasn't hacked, then it was clearly compomised.

                              Live Fast, Die Young, and Leave a Tattooed Corpse...
                              and for the love of God,
                              don't forget to leave an iGiver.

                              iGiver Tutorial

                              Introductions: Rules, FAQ and Registration Form

                              BIT-HDTV x 6
                              HD-MKV x 2
                              ComicBT x 2
                              Unlimited MyAnonamouse Invites