CorruptSecurity
|
This article is about as appealing as Goatse. Plz Wikify this Article by adding categories, thumbnail images, links to other articles (relevant ones), appropriate templates, and correct wiki formatting. You can check out the Style Guide for more information or jump on #Wiki if you need help editing. |
CorruptSecurity also known as Team C0rrupt, Team D4RK, Team D3LTA, TeamV1rus (and countless others) is a forum full of teenage kids who attempt to deface other websites and then brag about it on the website.
Team C0rrupt themselves are probably the only skilled group on the site who actually find their own exploits and have the same skill and knowledge of people in underground communities, some coming from the underground themselves, mainly to troll and make fun of others. They rarely interact with anyone since the chat is always dead while they talk on the private irc server that the general scene never get to see.
The owners of the site; TheJoker - an at the time skilled 15 year old from the US and TheCorrupt - a person who is said to have ties with Ac1dB1tches apparently recoded and rebuild the software they are using to increase security, but it is essentially a vbulletin 4 build with some minor edits (perhaps a few custom plugins). One the more prominent and hilarious being their "firewall" that integrates with the vbulletin system and makes fun of script kiddies who attempt weak payloads in the querystring.
They are infamous for finding and using an apparent vbulletin remote code execution 0day and dumping the vbulletin.com database back in 2012 which has been circulated and sold multiple times since. Jelsoft finally acknowledged the vulnerability after sergei of 1337day leached the 0day and took credit, to which 1337day was ultimately hacked and all the apparent private exploits were released by Team C0rrupt on their forum.
Multiple groups have attempted to hack the forum. One of the more well known being IsaHackers who started a war with members of CorruptSec after it's database and plaintext passwords were dropped on the forum by a former member of Team D4rk. After rooting ISA multiple times and splitting their members up. A new group "ApH" emerged seeking vengeance for the attacks on ISA members, but they were ultimately owned on the same day and nothing more came of the group. There have been multiple hack claims against the group but they all turn out to be from uneducated children who just want to get a rep for themselves. After continuous false claims against the group and it's site they launched the hall of shame where it showcased "skids" who had claimed to hack them. One of the funniest being a person who claimed they defaced the website by submitting a website that contained a JS alert displaying "CORRUPTSEC IZ HAKD" to a deface archive which renders HTML content of the url you submit.
There are also multiple people claiming they have the database of the CorruptSecurity forum itself, after the owners launched a honeypot that displayed random outputs such as /etc/hosts or fake database credentials, designed to specifically target and abuse vulnerability scanners.
Ultimately though CorruptSec got alot of bad press for hacks by it's general userbase after sites with barely any members or traffic was targetted by the forum community trying to get into the groups already established previous. As such the site was dead until someone in C0rrupt did a major hack, like taking down NextGenUpdate which was at the time, the pinnacle of all gaming forums.
After annoying many members of the community the site finally died off for good (although it's still up to this day) and not much is known on the whereabouts of the original members or who's running CorruptSec to this day. Many have claimed the site admins got arrested and the shenanigans finally caught up to them. But nobody truely knows.
|
CorruptSecurity is part of a series on Visit the Sites Portal for complete coverage. |