Imagine selling a bypass tool and then getting your entire database leaked. Couldn't secure a WordPress site apparently.
Someone found a hole in their site. Instead of being nice about it, they grabbed the whole database - emails, Discord IDs, HWIDs, license keys, payment info. Then wiped everything and had some fun with the homepage.
The best part? These guys were selling a tool to help cheaters avoid detection. Now every single one of their customers is exposed. The irony is almost too perfect.
Club44's reputation: 2024 - 2026
"They tried to bypass anti-cheats but couldn't bypass basic SQL injection."
- probably what happened
For anyone curious what they were actually paying for:
Pretends to be Steam, WinRAR, OneDrive installers. Real creative.
Leaves files behind that stick around even after "cleaning"
Spoiler: we still find the traces. It doesn't work.
Makes it harder to analyze. VirusTotal still flags it 16+ times.
Very convenient and not suspicious at all
groundbreaking technology
In case you want to check if you've been a victim. Or report them.
f1d96aca4ddb6b317e43e2cc599ce69f32a2c41a1c1adf94312da48269536fc245e9df8d070a60502f2d511a04470e532af406cf124fe4cb005811465e121358OneDriveSetup.exeSteamSetup.exeSteamService.exeWinRARSetup.exedxwebsetup.exeClubhouseAC catches Club44 and the mess it leaves behind. The "Clean Traces"button they're so proud of doesn't do much against forensic scanning. We find the registry keys, temp files, and artifacts their cleaner misses.
If someone in your server used this, we'll know.
Get ClubhouseAC