Cheap and effective ransomware-as-a-service introduced in Russian underground
A cheap, effective and easy-to-use ransomware service is currently being sold in the Russian-language hacking underground. At a cost of $175, Karmen allows any buyer to encrypt infected machines using the AES-256 protocol and then trigger a ransom note demanding money, according to the security firm Recorded Future. Unlike most other ransomware, Karmen knows how to defend itself. The malware deletes its own decryptor if analysis software or a sandbox environment is detected. The tool is developed by a team includes two individuals: DevBitox, a Russian-speaking cybercriminal who sells the product, and an unknown developer in Germany, according to Recorded Future. Karmen has been observed since December 2016 when it was developed from the open source ransomware project Hidden Tear. The scope of Karmen’s infections and sales isn’t clear, but Recorded Future researchers observed at least 20 sales by DevBitox. Here’s DevBitox’s commercial for Karmen: The ransomware is interesting and highly professional […]
The post Cheap and effective ransomware-as-a-service introduced in Russian underground appeared first on Cyberscoop.
Continue reading Cheap and effective ransomware-as-a-service introduced in Russian underground