"Ransomware-as-a-Service Transforms Gangs Into Businesses"

According to a recent threat report, Malware-as-a-Service (MaaS) is becoming more accessible to threat actors. The cyber threat group, called 'Eternity Project,' operates through a Tor website and a Telegram channel, selling malware in a systematic manner. The group offers stealer, clipper, worm, miner, ransomware, and Distributed Denial-of-Service (DDoS) bot services. Many security professionals are concerned about this since inexperienced cybercriminals can even use Eternity to target victims with a customized threat offering. Eternity Project charges between $90 and $490 for malware. As MaaS becomes more sophisticated, it is easier than ever to obtain attack tools at a low cost. Cyble researchers found that Eternity Project provides a wide range of malware services through its Telegram channel, which has about 500 subscribers. The channel includes videos and provides detailed information about the service's features. Eternity Project's Telegram channel, like any other brand showcasing new features, shares news about malware updates. Eternity Stealer is one example of the type of harm that Eternity Project's malware can cause. This malware allows users to steal targets' passwords, cookies, credit cards, and cryptocurrency wallets, and then receive the stolen data directly on the Telegram bot. It also provides methods for breaking into messenger apps, password managers, and other software. Customers can build Eternity Stealer malware directly on the Telegram bot. When the user selects a stealer product, options to add features such as AntiVM and AntiRepeat appear. The user can then select an available payload file extension. From there, users can download the exfiltrated payload directly from the Telegram channel. This article continues to discuss the Eternity Project MaaS group, its Eternity Stealer malware, the growth in MaaS activity, and suggestions for thwarting malware attacks. 

Security Intelligence reports "Ransomware-as-a-Service Transforms Gangs Into Businesses"

Submitted by Anonymous on