INFRA
INFRA
INFRA
High profits are driving an explosion in the ransomware market
Despite growing awareness of the risks presented to users, ransomware continues to be a highly profitable endeavor for nefarious actors, according to new research that finds the market for ransomware is exploding.
Researchers at endpoint security firm Carbon Black Inc. found that from 2016 to 2017, there has been a staggering 26fold increase in the sale of ransomware on the dark web, a shady part of the internet reachable with special software, because of a simple economic principle: supply and demand.
“Cybercriminals are increasingly seeing opportunities to enter the market and looking to make a quick buck via one of the many ransomware offerings available via illicit economies,” the researchers noted. “In addition, a basic appeal of ransomware is simple: it’s turnkey. Unlike many other forms of cyberattacks, ransomware can be quickly and brainlessly deployed with a high probability of profit.”
The researchers also estimated that there were now 6,300 plus sites on the dark web selling ransomware via 45,000-plus product listings. Sales for the year to date are estimated to have totaled over $6 million, with ransomware authors able to pull in annual salaries of more than $163,000, double that of legitimate software developers, who pull in an average of $69,000 a year.
Bitcoin, unsurprisingly, gets a mention in the research paper, named as aiding the growth of ransomware. But the researchers noted that more importantly, it’s a lack of fundamental security controls such as backups, testing, restoration, patching, visibility and out-of-date prevention strategies that are the main reasons ransomware is thriving.
Those pushing ransomware were found to be increasingly leveraging social media content on sites such as Facebook to spread their code. “Ransomware will increasingly leverage social media to spread either intentionally or unintentionally,” the researchers said. “Similar to malware such as Koobface, maliciously shared content on sites such as Facebook could lead victims to click-enticing links. Intentionally shared ransomware, seen in prior concepts, such as Popcorn Time where victims could share to reduce or eliminate their ransom, could see larger-scale use.”
Going forward, the researchers say that ransomware “will become more targeted by looking for certain file types and targeting specific companies such as legal, healthcare and tax preparers rather than ‘spray-and-pray’ attacks we largely see now.”
Image: Carbon Black
A message from John Furrier, co-founder of SiliconANGLE:
Support our mission to keep content open and free by engaging with theCUBE community. Join theCUBE’s Alumni Trust Network, where technology leaders connect, share intelligence and create opportunities.
- 15M+ viewers of theCUBE videos, powering conversations across AI, cloud, cybersecurity and more
- 11.4k+ theCUBE alumni — Connect with more than 11,400 tech and business leaders shaping the future through a unique trusted-based network.
About SiliconANGLE Media
SiliconANGLE Media is a recognized leader in digital media innovation, uniting breakthrough technology, strategic insights and real-time audience engagement. As the parent company of SiliconANGLE, theCUBE Network, theCUBE Research, CUBE365, theCUBE AI and theCUBE SuperStudios — with flagship locations in Silicon Valley and the New York Stock Exchange — SiliconANGLE Media operates at the intersection of media, technology and AI.
Founded by tech visionaries John Furrier and Dave Vellante, SiliconANGLE Media has built a dynamic ecosystem of industry-leading digital media brands that reach 15+ million elite tech professionals. Our new proprietary theCUBE AI Video Cloud is breaking ground in audience interaction, leveraging theCUBEai.com neural network to help technology companies make data-driven decisions and stay at the forefront of industry conversations.
