Ransomware groups test new business models to hit more victims, increase profits

by

Ransomware groups test new business models to hit more victims, increase profits

The operators behind the DragonForce and Anubis ransomware-as-a-service schemes are launching new business models to attract affiliates, according to research published Wednesday. These ransomware enterprises are evolving their tactics, much like legitimate businesses, to increase market share and profits, taking advantage of recent disruptions in the ecosystem to offer hackers new ways to collaborate.

Source: The Record

Key Points

  • DragonForce is rebranding itself as a “cartel”, allowing affiliates to create their own brands while using shared infrastructure.
  • Anubis offers three monetization schemes for its clients, with various percentages of ransom payouts based on attack type.
  • Both groups are employing new tactics to increase pressure on victims, including threats of publicising stolen data.
  • Disruptions in the ransomware space have led to wider experimentation with different operating models among threat actors.
  • Efforts to thwart ransomware groups appear to be having an effect, with reports of declining extortion payments.

Why should I read this?

If you’ve ever wondered how the underbelly of cybercrime adapts to pressures and changes, this article is a must-read! Ransomware groups are shifting their strategies, and understanding these developments is crucial for anyone interested in cybersecurity. Plus, it highlights how evolving defence mechanisms can impact these criminal enterprises. We’ve gathered the essentials for you, so you can stay ahead without diving into the weeds!