New York, Dec 26: The infamous WannaCry Ransomware is now offering its services on the dark web for cyber attacks. It is also offering to subscribe to ransomware-as-a-service (RaaS) and steps on how to launch attacks. A code is sold to the users with an intention to launch cyber attacks across the Internet. It also offers a dashboard so that the cybercriminal can check how his/her attack is working on.
“A particular ransomware called Cerber was being offered as a service by 170 people actively last year, and infected nearly 150,000 victims across 200 countries, including India. This number has definitely grown this year,” said Venugopal N, director of security engineering for India and SAARC. (Also Read: 45,000 cyber attacks in 74 countries; computers in British hospitals, Spanish firms including India down)
Ransomware locks a computer blocking the victim’s access to it and encrypts the computer files until a certain amount of ransom is paid in the form of bitcoins. However, it sends a decoder to the victim to unlock the device but after he/she pays a ransom. The ransom is then split between the developer and the attacker.
The first case of Ransomware was reported in 2005 in the United States. WannaCry is a program which is used by the attackers to lock the documents and data. It leaves the victims with two options: (a) What to do next to get access to their data (b) the Wanna Decryptor program. (Also Read: WannaCry Ransomware Cyber Attack, The Malware, Dance of Hillary And The Hoax)
When the user clicks on “Wanna Decryptor program”, it tells them that their files have been encrypted. It also asks them to pay a certain amount to retrieve their documents and data or their files will be deleted. One of the messages read: “Your files are encrypted. To get the key to decrypt files you have to pay 500 USD.”