New evidence suggests that the popular Play ransomware is now being rented out to cybercriminals.
Known as ransomware-as-a-service (RaaS), cybercriminals can pay to use the malware themselves, in addition to the infrastructure needed to carry out an attack. This is a relatively new phenomenon and can provide malicious cyber gangs with a steady stream of revenue.
Security firm Adlumin has tracked several attacks across multiple industries all using the Play ransomware and has found striking similarities between the attacks, suggesting that it is offered in the RaaS format. The similarities between individual attacks include copied passwords when creating high-privilege accounts and the same directories used for malware delivery.
Pay per play
In a reportstated Adlumin: “The unusual lack of even minor variations between attacks suggests that they are being carried out by affiliates that have purchased the ransomware-as-a-service (RaaS) and are following step-by-step instructions from playbooks included with Het.
“If RaaS operators advertise ransomware kits that contain everything a hacker needs, including documentation, forums, technical support and ransom negotiation support, script kiddies will be tempted to try their luck and put their skills to work .”
RaaS has been highlighted by multiple threat intelligence organizations as a growing sector within cybercriminal enterprises, as well-organized cyber gangs rent out their infrastructure, tactics, techniques and procedures to young groups or individuals looking to make some money without the necessary investments in their own architecture. .
In the wake of some ransomware attacks, cybercriminals have been known to misuse stolen data by threatening to sell/release it as a means to further extort organizations and force them to pay up. The US, along with several other leading economies, recently signed a pledge never to pay ransoms to cybercriminals again.
Through The hacker news
More from Ny Breaking
Today’s best Black Friday deals
Aura Family Protection $49.99 $24/month
Save 70% Protect your family with a plethora of features: password manager, identity theft protection, antivirus, VPN, parental controls and much more for just $20 per month. This offer ends on November 26th.View offer
Malwarebytes Premium + Privacy VPN $79.99 $38.24/year
Ends November 28. Malwarebytes Premium + Privacy VPN combines advanced antivirus and anti-malware with our next-gen VPN to keep your devices, data and online privacy safe. Receive a 50% discount on this super bundle for the first year.View offer
Norton 360 standard: $89.99 $24.99/year at Norton
Ends November 30 Get a 2GB cloud backup with a secure VPN, a firewall, a password manager, and most importantly, proven real-time threat protection for your device. Please note that the promotional price is only valid for the first year.View offer