Cyber-mercenaries for hire represent shifting criminal business model

2022-07-25 17:00

An emerging and fast-growing threat group is using a unique business model to offer cybercriminals a broad range of services that span from leaked databases and distributed denial-of-service attacks to hacking scripts and, in the future, potentially ransomware.

As a clearer picture of AIG emerged, it became obvious that the group's operations were anything but business as usual.

As cybercrime becomes more profitable, with some groups bringing in hundreds of millions of dollars, threat groups have evolved to include business models that mirror those of many corporations, with everything from CEOs to HR departments to time-off policies for their employees.

The reports adds: "This is not an ordinary threat group, both in the way they behave and the way they manage their campaigns. When comparing them to other crime syndicates, we see the clear behavior of a cartel as we witness their leaders serve as architects of the campaigns, while the mercenaries follow the masterminds' orders."

Because the contracts given out by Atlas are recurring, Cyberint said it appears the group's leaders aren't tied to the same individuals and that their campaigns have different mercenaries.

Through Telegram, Atlas also shares exploit kits and malicious content - including source code from various malware families - as a way to find the right mercenaries that the group needs for a particular campaign.

News URL

https://go.theregister.com/feed/www.theregister.com/2022/07/25/aig-unique-cybercrime-business/

#criminal