Initial Access Brokers refine their ransomware-as-a-service model

No Comments
ransomware key

We've looked before at the phenomenon of Initial Access Brokers, cybercriminals who breach systems and then sell access to the highest bidder.

It seems that during the pandemic IABs have been busy improving their business model. New research from threat intelligence company KELA shows that pricing is often determined by company size and the level of privilege on offer within the compromised network, with $5,400 as the average price for network access, and $1,000 as the median price.

Among the highest prices identified were 12 Bitcoin for access to a $500 million company and $100,000 for access to a national government organization.

The largest percentage of IAB victims are located in the US with others in France, UK, Australia, Canada, Italy, Brazil, Spain, Germany and UAE. The report also highlights a new trend of IABs using their access to steal from the victims themselves before posting it for sale.

KELA has observed some successful IABs changing their sales methods too, moving away from public forums to private channels with trusted buyers. Now, as the economy continues to grow, there are not only new trends emerging among existing IABs, but many new sellers entering the market.

"While remote work became mandatory in 2020, ransomware and associated criminal businesses also saw significant growth. In the last year, IABs have become key components of the ransomware-as-a-service ecosystem, making malicious network access easy and lucrative for many of today’s leading attacks. Our researchers were particularly interested in exploring our extensive dark web data to understand how the shift in the real world gave way to the cybercrime underground," says Aviad Gal, head of product at KELA. "Now with LUMINT, our complimentary offering, customers can also gain direct access to a window of the information our analysts uncover and synthesize every day. We are excited to empower all organizations -- from small businesses to the largest enterprises -- with the information they need to defend against the continual mounting cyber threats."

You can read more about the research on the KELA site and try out LUMINT which offers users a glimpse into KELA's latest intelligence insights from the dark web.

Photo credit: Ton Snoei / Shutterstock

No Comments

Comments are closed.

Got News? Contact Us

Recent Headlines

The stunning Windows 13 -- yes, 13! -- is the Microsoft operating system we want

Microsoft tries to calm fears after Edge update also appeared to install Copilot in Windows Server

MenteeBot is an AI-powered humanoid robot coming to your home and workplace in 2025

CISOs not changing priorities in response to AI threats

80 percent of companies don't have sufficient cyber insurance

Get 'Windows Server 2022 & PowerShell All-in-One For Dummies' (worth $30) for FREE

Cybercriminals take aim at ERP apps

Most Commented Stories

Say goodbye to Microsoft Windows 11 and hello to Nitrux Linux 3.4.0 'pl'

60 Comments

Windows 11 slammed for its 'comically bad' performance even on high-end hardware

18 Comments

Outrageous: Microsoft to charge $61 for Windows 10 updates -- consider switching to Linux!

17 Comments

Microsoft is up to its old tricks yet again -- Windows 10 users harassed with full-screen Windows 11 upgrade warnings

16 Comments

Microsoft 'improves' Windows 11 by bringing ads to the Start menu in the US

15 Comments

Easter giveaway! Get a licensed copy of 'VideoProc Converter for Windows/Mac' (worth $78.90) for FREE

10 Comments

EndeavourOS ARM discontinued: A huge loss for the Linux community

9 Comments

Install the KB5035942 update for Windows 11 to gain all of the Moment 5 features right now

8 Comments

© 1998-2024 BetaNews, Inc. All Rights Reserved. Privacy Policy - Cookie Policy.