Ransomware as a Service
From HandWiki
Ransomware as a Service is a cybercrime business model where ransomware operators write software and affiliates pay to launch attacks using said software.[1] Affiliates do not need to have technical skills of their own but rely on the technical skills of the operators.[2]
Microsoft Threat Intelligence Centre(MSTIC) regards RaaS as different from previous forms of ransomware as it no longer has a tight link between tools, initial entry vector and payload choices.[3] They regard them as having a double threat - both encrypting data and exfiltrating it and threatening to publish it.[3]
Examples of RaaS kits include Locky, Goliath, Shark, Stampado, Jokeroo and Encryptor.[1]
References
- ↑ 1.0 1.1 Baker, Kurt (2023-01-30). "Ransomware as a Service (RaaS) Explained How It Works & Examples". https://www.crowdstrike.com/cybersecurity-101/ransomware/ransomware-as-a-service-raas/.
- ↑ Palmer, Danny (2021-03-04). "Ransomware as a service is the new big problem for business". https://www.zdnet.com/article/ransomware-as-a-service-is-the-new-big-problem-for-business/.
- ↑ 3.0 3.1 "Ransomware as a service: Understanding the cybercrime gig economy and how to protect yourself". Microsoft Threat Intelligence Centre. 2022-05-09. https://www.microsoft.com/en-us/security/blog/2022/05/09/ransomware-as-a-service-understanding-the-cybercrime-gig-economy-and-how-to-protect-yourself/.