Ryuk Ransomware Delivered Using Malware-as-a-Service Tool
Healthcare Info Security
The operators behind the Ryuk strain of ransomware are increasingly relying on a malware-as-a-service tool - the Buer loader - to deliver the malware, rather than botnets such as Trickbot and Emotet, according to the security firm Sophos.
Researchers spotted advertisements for the Buer loader on underground forums starting in August 2019. The Sophos analysis, however, finds that the Ryuk operators have been increasingly relying on the loader to deliver their ransomware over the last several months.
Buer is a malware-as-a-service tool that...