Ransomware as a Service

From HandWiki

Ransomware as a Service is a cybercrime business model where ransomware operators write software and affiliates pay to launch attacks using said software.[1] Affiliates do not need to have technical skills of their own but rely on the technical skills of the operators.[2]

Microsoft Threat Intelligence Centre(MSTIC) regards RaaS as different from previous forms of ransomware as it no longer has a tight link between tools, initial entry vector and payload choices.[3] They regard them as having a double threat - both encrypting data and exfiltrating it and threatening to publish it.[3]

Examples of RaaS kits include Locky, Goliath, Shark, Stampado, Jokeroo and Encryptor.[1]

References

  1. 1.0 1.1 Baker, Kurt (2023-01-30). "Ransomware as a Service (RaaS) Explained How It Works & Examples". https://www.crowdstrike.com/cybersecurity-101/ransomware/ransomware-as-a-service-raas/. 
  2. Palmer, Danny (2021-03-04). "Ransomware as a service is the new big problem for business". https://www.zdnet.com/article/ransomware-as-a-service-is-the-new-big-problem-for-business/. 
  3. 3.0 3.1 "Ransomware as a service: Understanding the cybercrime gig economy and how to protect yourself". Microsoft Threat Intelligence Centre. 2022-05-09. https://www.microsoft.com/en-us/security/blog/2022/05/09/ransomware-as-a-service-understanding-the-cybercrime-gig-economy-and-how-to-protect-yourself/. 




Retrieved from "https://handwiki.org/wiki/index.php?title=Ransomware_as_a_Service&oldid=3388228"