Another Ransomware-as-a-Service Known as “Wing” Takes Flight on the Dark Web



Ransomware-as-a-ServiceAnalysis of this newly-spotted service makes it clear that the newest entrant into the Ransomware-as-a-Service (RaaS) space has taken note of where predecessors are lacking and launched a better product.

Given the financial and operational disruption ransomware has caused since last year, any headline about a new RaaS will surely lead to anxiety and grimace for IT and security professionals.

According to security analysts at security vendor Zerofox, the newest kid on the ransomware block is Wing – which just launched on the Russian-speaking Dark Web forum RAMP. A few things stand out with this newest player:

  • It’s been launched by an English-speaking threat actor, which Zerofox believes is indicative of a continued trend from last quarter where traditionally Russian-speaking actors have dominated the market
  • Wing ransomware is considered to be state-of-the-art, with features design for effective implementation and defense evasion
  • Offers a 10% of the take affiliate referral fee if one affiliate refers a second

This new ransomware actor is likely a leading indicator of what to expect more of in 2024 – lots of new ransomware “faces," more attacks, more creative compensation models and more effective attacks.

In their coverage of Wing, Zerofox offers a number of recommendations to shore up security that include securing credentials, ensuring backups, employing holistic patch management and more. And, as always, we always recommend strengthening the security of your users with new-school security awareness training.

KnowBe4 empowers your workforce to make smarter security decisions every day. Over 65,000 organizations worldwide trust the KnowBe4 platform to strengthen their security culture and reduce human risk.


RanSim

Free downloadable software tool

Threat actors are constantly coming out with new strains to evade detection. Is your network effective in blocking all of them when employees fall for social engineering attacks?

RanSim gives you a quick look at the effectiveness of your existing network protection. RanSim will test 24 ransomware infection scenarios and 1 cryptomining infection scenario and show you if a workstation is vulnerable.

RansIm-Monitor3Here's how it works:

  • 100% harmless simulation of real ransomware and cryptomining infections
  • Does not use any of your own files
  • Tests 25 types of infection scenarios
  • Just download the installer and run it
  • Results in a few minutes!

Get RanSim!

PS: Don't like to click on redirected buttons? Cut & Paste this link in your browser:

https://www.knowbe4.com/ransim



Subscribe to Our Blog


Comprehensive Anti-Phishing Guide




Get the latest about social engineering

Subscribe to CyberheistNews