Darkreading reported that inexpensive CaaS include malware “botnets, phishing and backdoors are all offered on the cheap as subscription. These days even crime is in the cloud.” The June 13, 2017 Darkreading report was entitled “The Rising Tide of Crimeware-as-a-Service” included these comments about RaaS:

The incipient rise of ransomware has occurred in lockstep with the increasing occurrence of ransomware-as-a-service. One of the first cropped up in 2015; Tox was remarkable for its unique business model. It was offered up on a profit-sharing basis. Its writers asked no up-front fee but did request 20% for any ransom paid by victims to its users. Tox dropped off the scene fairly early on, but its been followed by plenty of copycats. The profit-sharing must be lucrative for everyone involved because malware writers have significantly upped their vig. According to reports last summer, Cerber authors were charging a 40% cut in ransoms paid to users of their services.

Here are all 7 CaaS flavors:

  1. Shadow Broker Service
  2. Services Costs Meet Market Demands
  3. IoT Botnet Rental
  4. Modularized Malware Services
  5. Ransomware-as-a-service
  6. Phishing-as-a-Service
  7. Backdoor-as-a-Service

No doubt cybercriminals will continue to proliferate versions of CaaS so watch out!