The American software giant Microsoft recently warned of an increase in IT attacks as a service (RaaS, for its acronym in English) that facilitated the work of new cybercriminals by giving them tools and means.
Computer attacks as a service consist of an agreement between an operator, which develops and maintains the malware infrastructure (malignant computer programs) and the “affiliates”, common cybercriminals in many cases inexperienced who use this infrastructure for their attacks.
Affiliates pay to obtain data on potential virtual targets, such as vulnerable organizations whose digital credentials have been exposed or have malware already installed on their networks.
IT MAY INTEREST YOU This is how you should report a structural failure after an earthquake
According to Microsoft in a report, the rise in ransomware-as-a-service attacks in recent times has lowered the barriers to entry for cybercrime by significantly lowering the level of computer skills criminals need.
Furthermore, the complexity of the system makes it more difficult to identify the entities behind these criminal activities.
Because operators sell their expertise to anyone willing to pay, budding cybercriminals who lack the technical skills to use backdoors or invent other tools can easily gain access to a victim.
Simply purchase simple penetration test licenses and sysadmin-type applications to conduct attacks.
The gigantic list of stolen credentials available online – much of it on the so-called “dark web” – means that without basic defenses like multi-factor authentication, organizations are at a disadvantage in combating cybercriminals, he said. the creator of the Windows operating system.