How ransomware became big business

No Comments

On today's International Anti-Ransomware Day, cybersecurity company SentinelOne has publishes a blog looking at on how ransomware has evolved over the past 10 years.

It highlights how Ransomware-as-a-Service (RaaS) has matured into a scalable, profit-driven model, with revenue-sharing, affiliate recruitment, and performance incentives fuelling rapid expansion across the cybercrime ecosystem.

"In ten years, RaaS has evolved from a curiosity into a global industry," says Jim Walter, senior threat researcher at SentinelOne. "The service model has lowered the barrier to entry so much that even unskilled actors can now participate. Meanwhile, the most advanced groups operate with professional polish, strong branding, and corporate-style structure. This dual dynamic, combining accessibility with professionalism, has made ransomware one of the most persistent and costly threats facing organizations today. Understanding the past decade of RaaS helps us anticipate what may come next, whether it involves new affiliate structures, more aggressive branding tactics, or the integration of emerging technologies like generative AI."

It's also a reminder of how much the ransomware threat has developed. One of the earliest significant shifts came in April 2015, when the first fully public, free RaaS platform, TOX, emerged. It allowed anyone to register, customize, and build their own Windows ransomware payloads. Although short-lived, it introduced two concepts that have since become a core part of the RaaS model: affiliate-based distribution and revenue sharing.

Walter concludes, "Global law enforcement agencies continue to discourage organizations from paying ransoms following an attack, instead advising victims to file a report with the Internet Crime Complaint Center (IC3), reinforcing broader efforts to build up cyber resilience. Defenders must continue to focus on early detection and disruption to stop attacks before they escalate. On this Anti-Ransomware Day, the best defense is awareness, preparedness, and continued vigilance."

You can read more on the SentinelOne blog.

Image credit: Benjawan Sittidech/Dreamstime.com

No Comments
Got News? Contact Us

Recent Headlines

TCL K32 brings Android 15 and 5G to Metro by T-Mobile for under 100 dollars

Kingston Fury Renegade G5 PCIe 5.0 SSD pushes performance with up to 14800MB/s read speeds

How ransomware became big business

Microsoft continues to foist Copilot on Windows 11 users by adding it to the context menu

AI agents -- how do you get from raw data to meaningful action? [Q&A]

Microsoft is boosting privacy in Teams after the death of Skype

Donald Trump secures China trade deal that may ease smartphone and PC prices

Most Commented Stories

Say 'no thanks' Microsoft Windows 11 and 'yes please' to AnduinOS 1.3

57 Comments

Microsoft has finally relented and is giving Windows 11 users the new Start menu they want

23 Comments

Move over Windows 11, Windows 12 is the Microsoft operating system we need

21 Comments

Never mind Windows 11, Commodore OS Vision 3.0 is the retro-inspired OS you didn't know you needed -- download it now!

15 Comments

Ditch Microsoft Windows for ALT Workstation 11: A Russian Linux distro with a modern GNOME desktop

14 Comments

Nintendo says your Switch 2 isn’t really yours even if you paid for it

13 Comments

Hackers can now bypass Linux security thanks to terrifying new Curing rootkit

11 Comments

Here’s why I reserved the affordable and customizable Slate electric pickup truck

10 Comments

© 1998-2025 BetaNews, Inc. All Rights Reserved. Privacy Policy - Cookie Policy.