A risk group referred to as ARES is gaining notoriety on the cybercrime scene by promoting and leaking databases stolen from firms and public authorities.
The actor emerged on Telegram in late 2021 and has been related to the RansomHouse ransomware operation and the information leak platform, KelvinSecurity, and the community entry group Adrastea.
ARES Group manages its personal web site with database leaks and a discussion board, which can fill the void left by the now defunct Breached forum.
Cyfirma reports that ARES shows a cartel-like habits, actively searching for affiliations with different risk actors.
ARES Leaks is a platform hosted on the common internet that gives entry to information leaks from 65 international locations, together with america, France, Spain, Australia, and Italy.
The web site hosts leaks with all kinds of info, from cellphone numbers, electronic mail addresses, buyer particulars, B2B, SSN, and firm databases, to foreign exchange information, authorities leaks, and passports.
The group accepts cryptocurrency funds from members who need to entry the supplied information or to buy one of many obtainable providers, which span vulnerability exploitation, pen-testing, malware growth, and distributed denial of service (DDoS) assaults.
Based on Cyfirma, the exercise on ARES Leaks elevated on the heels of Breached shutting down.
On the finish of 2022, ARES sought to rent malware builders and knowledgeable pen-testers who might work in Syria, providing fee in cryptocurrency.
ARES additionally operates personal and VIP channels, presumably promoting extra priceless information leaks from high-profile organizations.
Cyfirma experiences that ARES has lately initiated efforts to amass army entry and databases, actively selling its curiosity by means of commercials on cybercrime platforms.
LeakBase launched in early 2023 and it’s one other undertaking supported by the ARES risk group. Aggressive promotion and Breached hacker discussion board closing its doorways brought about many customers to enroll.
It’s hosted on the clear internet and free for anybody to hitch, providing free databases, a market house for promoting leaks, leads, exploits, and providers, and an escrow funds system to encourage belief.
The discussion board additionally hosts areas for programming, hacking suggestions, tutorials, social engineering, penetration, cryptography, anonymity, and opsec guides and discussions.
LeakBase is a far cry from Breached presently, however its status seems to be rising and it might quickly grow to be a major hub for info and providers for cybercriminals.
ARES appears to be a well-organized risk group that saved increasing operations and providers to cowl all main cybercrime pursuits.
Cyfirma believes that ARES sees the shutdown of Breached as a possibility to speed up its progress and to ascertain its place within the cybercrime market.