- Jul 22, 2014
- 2,525
A new Ransomware-as-a-Service (RaaS) named Karmen is currently being advertised and sold online on an infamous Russian-speaking underground hacking forum.
First spotted by MalwareHunter in mid-March, the Karmen RaaS is based on the Hidden Tear open-source ransomware building toolkit, which has suffered minor modifications.
Two devs behind Karmen RaaS
According to threat intelligence firm Recorded Future, work on this new RaaS started late last year, when a Russian-speaking hacker named DevBitox joined forces with an unknown German partner and created Karmen.
The two divided tasks between them and the German partner created the ransomware per-se, modifying a version of the Hidden Tear ransomware, while DevBitox used his web coding skills to create the Karmen RaaS backend.
When their new service was ready, the two started advertising Karmen on several places online.
....
...
In reality, the ransomware isn't as secure as its authors believe, and security researcher and long-time Bleeping Computer forum user Michael Gillespie has already found a way to help users.
....
First spotted by MalwareHunter in mid-March, the Karmen RaaS is based on the Hidden Tear open-source ransomware building toolkit, which has suffered minor modifications.
Two devs behind Karmen RaaS
According to threat intelligence firm Recorded Future, work on this new RaaS started late last year, when a Russian-speaking hacker named DevBitox joined forces with an unknown German partner and created Karmen.
The two divided tasks between them and the German partner created the ransomware per-se, modifying a version of the Hidden Tear ransomware, while DevBitox used his web coding skills to create the Karmen RaaS backend.
When their new service was ready, the two started advertising Karmen on several places online.
....
...
In reality, the ransomware isn't as secure as its authors believe, and security researcher and long-time Bleeping Computer forum user Michael Gillespie has already found a way to help users.
....
![[correlate]](/data/avatars/s/79/79653.jpg?1556985072){kind=avatar}