Ransomwareas-a-Service

 Ransomwareas-a-Service 

Ransomware-as-a-Service (RaaS) is created for extortion over stolen or encrypted data, known as ransomware. The author of the ransomware makes the software available to customers called affiliates, who use the software to hold people’s data hostage with little technical skill. WannaCry had one of the largest RaaS attack vectors to date, with upwards of 400,000 computers infected across 150 countries. WannaCry infiltrated networks using the EternalBlue vulnerability in Microsoft’s implementation of the Server Message Block (SMB) protocol. A cyberattack exploits originally developed by the U.S. National Security Agency (NSA), they did not alert Microsoft about the vulnerabilities and held on to it for more than five years before the breach forced the agency to come clean about the issue.

What you need to know: RaaS is a business model between ransomware operators and affiliates in which affiliates pay to launch ransomware attacks developed by operators. RaaS kits allow affiliates lacking the skill or time to develop their own ransomware variant to be up and running quickly and affordably. A RaaS kit may include 24/7 support, bundled offers, user reviews, forums and other features identical to those offered by legitimate SaaS providers


Comments

Popular posts from this blog

Compromised Credentials

SQL Injection