SINGAPORE, Aug. 23, 2022 /PRNewswire/ -- Microsoft today released its second edition of Cyber Signals, a regular cyberthreat intelligence brief, spotlighting security trends and insights gathered from Microsoft's global security signals and experts. The specialization and consolidation of the cybercrime economy have fueled ransomware-as-a-service (RaaS), becoming a dominant business model, enabling a wider range of criminals, regardless of their technical expertise, to deploy ransomware. This edition of Cyber Signals provides insights on the evolving factors shaping the extortion segment of the cybercrime economy, and the influential rise of RaaS powering ransomware attacks.
The RaaS economy allows cybercriminals to purchase access to ransomware payloads and data leakage as well as payment infrastructure. Ransomware "gangs" are in reality RaaS programs like Conti or REvil, used by many different actors who switch between RaaS programs and payloads. This industrialization of cybercrime has created specialized roles, like access brokers who sell access to networks. A single compromise often involves multiple cybercriminals in different stages of the intrusion.
Key findings shared within the report include:
Vasu Jakkal, Corporate Vice President, Security, Compliance, Identity, and Management at Microsoft, said: "It takes new levels of collaboration to meet the ransomware challenge. The best defenses begin with clarity and prioritization, that means more sharing of information across and between the public and private sectors and a collective resolve to help each other make the world safer for all. At Microsoft, we take that responsibility to heart because we believe security is a team sport."
Microsoft's threat intelligence provides visibility into threat actors' actions. With a broad view of the threat landscape – informed by 43 trillion threat signals analyzed daily, combined with the human intelligence of more than 8,500 Microsoft experts – threat hunters, forensics investigators, malware engineers, and researchers – Microsoft is able to see first-hand what organizations are facing, and is committed to helping businesses put that information into action to pre-empt and disrupt extortion threats.
For more information on the RaaS landscape and its evolution, check out the Cyber Signals microsite and report, as well as the Microsoft Security blogpost on this. To better understand the cybercrime gig economy and how businesses can protect themselves, visit the Microsoft Security blog.
For more information, please contact:
Microsoft Asia
Simran Singh Sethi
Simran.Sethi@microsoft.com
Edelman (Partner Agency for Microsoft Asia)
Woo Jia Min / Farhansyah Musa
EdelMSFTCorp@edelman.com
Note to editors: For more information, news and perspectives from Microsoft, please visit the Microsoft News Center at http://news.microsoft.com/. Web links, telephone numbers and titles were correct at time of publication, but may have changed. For additional assistance, journalists and analysts may contact Microsoft's Rapid Response Team or other appropriate contacts listed at Microsoft Public Relations Contacts - Stories.
[i] Source: Microsoft 365 Defender Threat Intelligence Team and Microsoft Threat Intelligence Center (MSTIC)