Analysis of this newly-spotted service makes it clear that the newest entrant into the Ransomware-as-a-Service (RaaS) space has taken note of where predecessors are lacking and launched a better product.
Given the financial and operational disruption ransomware has caused since last year, any headline about a new RaaS will surely lead to anxiety and grimace for IT and security professionals.
According to security analysts at security vendor Zerofox, the newest kid on the ransomware block is Wing – which just launched on the Russian-speaking Dark Web forum RAMP. A few things stand out with this newest player:
- It’s been launched by an English-speaking threat actor, which Zerofox believes is indicative of a continued trend from last quarter where traditionally Russian-speaking actors have dominated the market
- Wing ransomware is considered to be state-of-the-art, with features design for effective implementation and defense evasion
- Offers a 10% of the take affiliate referral fee if one affiliate refers a second
This new ransomware actor is likely a leading indicator of what to expect more of in 2024 – lots of new ransomware “faces," more attacks, more creative compensation models and more effective attacks.
In their coverage of Wing, Zerofox offers a number of recommendations to shore up security that include securing credentials, ensuring backups, employing holistic patch management and more. And, as always, we always recommend strengthening the security of your users with new-school security awareness training.
KnowBe4 empowers your workforce to make smarter security decisions every day. Over 65,000 organizations worldwide trust the KnowBe4 platform to strengthen their security culture and reduce human risk.