The ransomware formerly known as Mailto has taken a page from traditional software vendors and rebranded itself with a new affiliate-based go-to-market strategy.
When I need new customers, I look for ways to quickly identify and reach potential prospects, which can often include a channel strategy that leverages partners and affiliates. So, it should come as no surprise to see that ransomware “vendors” are doing the very same thing. According to Bleeping Computer, the operators of the Netwalker have been conducting interviews (yeah! Interviews!!!) to identify appropriate affiliates since March that will help take advantage of those cybercriminal organizations that are really good at compromising credentials, use of social engineering, and infecting endpoints to help increase Netwalker’s reach.
According to the details uncovered, affiliates receive up to 70% of the ransom, giving cybercriminal organizations ample incentive to partner up with Netwalker.
With Netwalker operators touting paid ransoms as high as $1.5 million, this new age of multiple cybercriminal organizations ganging up together to be even more impactful should have you worried.
The good news is this new development only means Netwalker expands its’ potential for successful ransom; it does not ensure success however. Organizations that address the use of phishing attacks as one of the primary attack vectors can stop attacks by Netwalker affiliates in their tracks. With a layered security strategy and Security Awareness Training in place, users will both be protected from and can steer clear of advanced phishing attacks that may include Netwalker or any other malicious content.
Here's how it works:
