Breached shutdown sparks migration to ARES knowledge leak boards

0
376
Breached shutdown sparks migration to ARES knowledge leak boards


Breached shutdown sparks migration to ARES knowledge leak boards

A menace group referred to as ARES is gaining notoriety on the cybercrime scene by promoting and leaking databases stolen from companies and public authorities.

The actor emerged on Telegram in late 2021 and has been related to the RansomHouse ransomware operation and the information leak platform, KelvinSecurity, and the community entry group Adrastea.

ARES Group manages its personal web site with database leaks and a discussion board, which can fill the void left by the now defunct Breached discussion board.

Cyfirma experiences that ARES shows a cartel-like habits, actively searching for affiliations with different menace actors.

ARES showcasing its collaborations
ARES showcasing its collaborations (Cyfirma)

ARES Leaks

ARES Leaks is a platform hosted on the common internet that provides entry to knowledge leaks from 65 international locations, together with the United States, France, Spain, Australia, and Italy.

The web site hosts leaks with all varieties of info, from telephone numbers, electronic mail addresses, buyer particulars, B2B, SSN, and firm databases, to foreign exchange knowledge, authorities leaks, and passports.

The group accepts cryptocurrency funds from members who need to entry the supplied knowledge or to buy one of many accessible providers, which span vulnerability exploitation, pen-testing, malware improvement, and distributed denial of service (DDoS) assaults.

According to Cyfirma, the exercise on ARES Leaks elevated on the heels of Breached shutting down.

At the top of 2022, ARES sought to rent malware builders and skilled pen-testers who may work in Syria, providing cost in cryptocurrency.

ARES seeking to hire IT experts
ARES searching for to rent IT specialists (Cyfirma)

ARES additionally operates non-public and VIP channels, presumably promoting extra invaluable knowledge leaks from high-profile organizations.

Cyfirma experiences that ARES has not too long ago initiated efforts to accumulate army entry and databases, actively selling its curiosity by way of commercials on cybercrime platforms.

LeakBase

LeakBase launched in early 2023 and it’s one other venture supported by the ARES menace group. Aggressive promotion and Breached hacker discussion board closing its doorways prompted many customers to enroll.

It is hosted on the clear internet and free for anybody to affix, providing free databases, a market house for promoting leaks, leads, exploits, and providers, and an escrow funds system to encourage belief.

The discussion board additionally hosts areas for programming, hacking suggestions, tutorials, social engineering, penetration, cryptography, anonymity, and opsec guides and discussions.

The LeakBase forums
The LeakBase boards (BleepingComputer)

LeakBase is a far cry from Breached presently, however its status seems to be rising and it may quickly turn into a big hub for info and providers for cybercriminals.

ARES appears to be a well-organized menace group that stored increasing operations and providers to cowl all main cybercrime pursuits.

Cyfirma believes that ARES sees the shutdown of Breached as a possibility to speed up its development and to determine its place within the cybercrime market.

LEAVE A REPLY

Please enter your comment!
Please enter your name here