ADVERTISEMENT

The Crimeware-as-a-Service model is sweeping over the cybercrime world. Here’s why

Computer with error Virus detected on screen
Pierluigi Paganini
Pierluigi Paganini Contributor
Oct 16, 2020 Updated: 28 September 2021 4 min read
Crimeware-as-a-Service (or Cybercrime-as-a-Service) has increasingly enabled both technically inexperienced criminals and advanced threat actors to rapidly arrange sophisticated attacks. 
The most popular services and products offered under the Crimeware-as-a-Service umbrella are malware, ransomware, phishing kits, and also command and control infrastructure.

A lower entry barrier

Prominent examples of malware offered through this model are Emotet and Trickbot.
“There has been an observable shift from what used to be a business for threat actors, now being more of an enterprise. Where specialist skills are needed (e.g. malware-coding, malware-distribution), criminals are able to hire developers or consultants to fill this need.” 
ADVERTISEMENT

What are the dangers of CaaS? 

Ransomware-as-a-Service (RaaS) model
The biggest danger of RaaS is that it potentially allows anyone to carry out a malware campaign and become a cyber extortionist.
Image source: BleepingComputer

What can be done to combat CaaS? 

ADVERTISEMENT