Ransomware-as-a-Service (RaaS)

Definition

Ransomware-as-a-Service is a criminal business model where ransomware developers rent their malware to other cybercriminals (affiliates). It has led to explosive growth in ransomware attacks.

In RaaS, two parties collaborate: the developer provides the ransomware, platform, and infrastructure; the affiliate executes the attack and pays a percentage of the ransom (typically 20-30%) to the developer.

Related terms

Ransomware APT (Advanced Persistent Threat) Incident Response
← Back to glossary