If you wonder why the malware ‘vendors’ create their nasties, here’s an insight into the Cerber ransomware business model:
As it turns out, the vast majority of victims that are infected with Cerber ransomware never actually pay the ransom, but that doesn’t mean that Cerber isn’t making money—in fact, it’s making a lot of money. A new report published Aug. 18 by security firm Check Point Software Technologies provides insight into how Cerber operates its ransomware-as-a-service model that generated at least $195,000 in profit in July alone.
The Cerber ransomware is operated in a model whereby affiliates sign up to help distribute the malware and then earn a percentage of any payouts. In one Cerber recruiting advertisement reported on by Check Point, Cerber affiliates are promised a payout of 60 percent of the ransom profit, with a 5 percent bonus if the affiliate is able to also recruit new affiliates into the Cerber platform. That leaves 35 to 40 percent of the ransomware profit for Cerber’s developers.