US authorities have launched a hunt for online libraries. Students and professors are furious.

[Carding Forum]

The popular pirate e-book site Z-Library, or rather its phishing clone Z-lib, created at the end of 2022, recently experienced a data leak of almost 10 million users.

On June 27, 2024, the Cybernews research team discovered an open database with information from 9,761,948 users. This data belonged to the attackers who managed the fake version of the Z-Library.

Under the guise of a real site, fraudsters have been collecting personal information, passwords, addresses of cryptocurrency wallets and payment data of users for a long time. However, to make matters worse, the attackers accidentally exposed all of this data. The researchers confirmed the authenticity of this information.

The Z-lib website, created shortly after the original Z-Library domains were seized by US authorities in November 2022, is a phishing resource that collects credentials and requests payments. In their Telegram channel, the attackers even pretended to be the legitimate owners of Z-Library and claimed that their site was the only official one.

Phishing site Z-lib was actively used: one of its domains had 10.7 million visitors per month, and the other — 7.6 million. Meanwhile, attempts to block and withdraw the domains of the original Z-Library continue to this day, which contributes to the growing popularity of fake sites.

"This is a leak on an unprecedented scale," the researchers told Cybernews. According to them, the number of compromised accounts on the fake Z-lib site exceeds the number of users of the original site before it was closed. It is noteworthy that up to this point, the record among leaks in the field of digital piracy belonged to The Pirate Bay site, when in 2007 hackers disclosed the data of 1.5 million of its users.

In turn, the Z-lib leak, according to researchers, occurred due to the fact that directory listing was enabled on the attackers web server, which allowed any user to see a list of all files on the server. Among the files was the same database with personal information of millions of users, created on June 20, 2024.

The passwords were encrypted using the bcrypt algorithm, which makes them harder to crack, but does not make them impossible. The researchers also confirmed the existence of compromised cryptocurrency wallets on the Bitcoin and Monero blockchains. Users who registered on the fake site regularly received spam with malicious links that posed a serious threat to security and privacy.

Since the leak affects almost 10 million people, its consequences can be very serious. Affected users are encouraged to take their own measures to protect their data and assets. These measures include changing passwords, blocking malicious email addresses, stopping the use of compromised cryptocurrency wallets, and switching to more secure email services.

• Source: https://cybernews.com/security/zlibrary-copycat-exposes-millions-digital-pirates/

 

[Friend]

Telegram, which recently agreed to cooperate with law enforcement agencies in European countries, has begun removing links to the largest pirate Internet library Z-Library. According to US authorities, Russians who are on the international wanted list are behind it. New and old messages published on the library's official English-language Telegram channel with more than half a million subscribers were moderated. The library administration suggests searching for relevant links on Wikipedia and Reddit.

"Cleaning Up" a Popular Channel of a Popular Library

Telegram has begun censoring the official channel of the world's largest pirate electronic library Z-Library, writes TorrentFreak.

The English-language Telegram channel "Z-Library Official" boasts a wide audience reach - it has more than 566 thousand subscribers. The channel is used by the library administration to notify users about news about the site, in particular, about its availability at new addresses, which the administrators periodically register to replace previously blocked ones at the request of copyright holders.

As TorrentFreak notes, recently some new and archived messages published on the channel - several dozen in total - have begun to disappear - specifically those that contain links to the website and alternative domains of Z-Library.

It is noteworthy that it is not the posts themselves that disappear, but only the text of the message contained in them - reactions and comments from users remain intact. The deleted text is replaced by an information message with the following content: “This message couldn’t be displayed on your device due to copyright infringement.” This circumstance indicates that the initiators of the “cleanup” were not the administrators of the Telegram channel, but probably the copyright holders, who enlisted the support of law enforcement agencies. There is no information yet about which organization issued the corresponding order.

Telegram has previously accepted complaints from copyright holders under the US Digital Millennium Copyright Act (DMCA) and removed content that violated it, although it is unknown how quickly the messenger responded to such requests, TorrentFreak notes.

“Recently, the Telegram administration has been blocking posts containing links to our library. Therefore, we would like to remind you of the places where you can find current links”, says one of the latest publications on the Telegram channel. The library administration suggests looking for current addresses on Wikipedia and Reddit, where posting such links is not prohibited.

Telegram as a haven for pirates

Aiding computer piracy was not among the offenses imputed to Durov. Nevertheless, claims against Telegram on this matter have arisen in the past both from the copyright holders affected by it, and from individual state and supranational structures.

In particular, in 2020, the platform was included in the European Union's watch list for combating counterfeiting and piracy, which is compiled by the European Commission. The list includes online resources that have been found to systematically violate copyright and related rights. No sanctions are provided for those on the list.

In Spain, the distribution of pirated content via Telegram was approached more radically. In March 2024, the court ordered Spanish Internet providers to block access to the messenger in the country. The measure, which caused a storm of indignation in society, was subsequently recognized as "disproportionate" and canceled.

The library is alive and well

According to TorrentFreak, enterprising third parties derive certain financial benefits from the fight of copyright holders against pirates. They launch "unofficial" clones of Z-Library, and promote links to them through the same Wikipedia and Reddit.

Meanwhile, the cat-and-mouse game with copyright holders, during which the site's administration responds to the blocking of domains belonging to Z-Library by registering new ones, does not interfere with the functioning of the library too much. Its site shows no signs of a significant slowdown in work, and the administration recently launched a fundraising campaign to support the project. Several thousand dollars were raised within a few days.

In early November 2022, the Federal Bureau of Investigation (FBI) and the US Department of Justice initiated the blocking and seizure of domains associated with Z-Library - they seized about 140 in total. Among them are z-lib.org, book4you.org, u1lib.org, bookmail.org, b-ok.org, b-ok.cc, booksc.xyz, bookos-z1.org, vn1lib.club, zlibcdn.com, usa1lib.org