Ryuk Ransomware Delivered Using Malware-as-a-Service Tool

Healthcare Info Security

Prajeet Nair

The operators behind the Ryuk strain of ransomware are increasingly relying on a malware-as-a-service tool - the Buer loader - to deliver the malware, rather than botnets such as Trickbot and Emotet, according to the security firm Sophos.

Researchers spotted advertisements for the Buer loader on underground forums starting in August 2019. The Sophos analysis, however, finds that the Ryuk operators have been increasingly relying on the loader to deliver their ransomware over the last several months.

Buer is a malware-as-a-service tool that...

Get the Morning Update

Thanks for subscribing!