Dharma Ransomware-as-a-Service poses major threat to SMBs

News
By published

“Off-the-shelf” ransomware attack software is becoming increasingly popular and easy to use

(Image credit: Shutterstock)

Small businesses are facing a growing number of ransomware threats as the programs needed to launch such attacks become more widespread.

Called the “fast food franchise of cybercrime”, Ransomware-as-a-Service enables even low-level and inexperienced hackers to purchase a ready-made solution for attacking small and medium-sized businesses, according to cybersecurity firm Sophos.

The firm named Dharma as one of the most popular offerings around, saying it provides a “paint by numbers” solution that cybercriminals have already used to extort millions of dollars from businesses.

In most cases, it’s the use of remote desktop software that serves as a point of ingress for hackers who then steal, encrypt, and hold for ransom files that are either critical to a company’s functioning or contain proprietary information that businesses are willing to pay for to keep private. 

The coronavirus pandemic left thousands of businesses scrambling to hastily implement remote working protocols, resulting in the widespread adoption of remote access software, but not necessarily the right practices for ensuring its secure use. As a result, the use of ransomware has skyrocketed in recent months, leaving many SMBs paying hand over fist to recover sensitive or mission-critical information. 

“Have fun, bro!”

Businesses can thus greatly reduce the probability of having to pay out thousands of dollars to cybercriminals by enforcing strong password management and multi-factor authentication, setting up a business VPN, and providing simple but effective security training to employees at all levels.

The Ransomware-as-a-Service model provides an off-the-shelf alternative for hackers and cybercriminals looking to wreak havoc, and greatly reduces the skill and knowledge required to attack businesses. As a result, Dharma and tools like it pose a major threat to SMBs: one need only purchase the software and gain access to a company’s network to launch an attack. Cybercriminals are then encouraged by Dharma to “Have fun, bro!” at the expense of business. 

However, there are a few simple measures companies can adopt to limit the risk of attack. According to a study by Coveware, a company that specializes in helping businesses successfully navigate and recover from ransomware attacks, 85% of such attacks are made possible by poor security around remote access. 

Christian Rigg
Christian Rigg

Christian is a freelance writer and content project manager with 6+ years' experience writing and leading teams in finance and technology for some of the world's largest online publishers, including TechRadar and Tom's Guide.

Latest in Security
China
Chinese hackers targeting Juniper Networks routers, so patch now
Google Chrome dark mode
Google updates Chrome extension rules to ban affiliate link injection without user action or benefit
Abstract image of robots working in an office environment including creating blueprint of robot arm, making a phone call, and typing on a keyboard
This worrying botnet targets unsecure TP-Link routers - thousands of devices already hacked
Avast cybersecurity
UK cybersecurity sector could be worth £13bn, research shows
An option to add Ambient Music buttons to the iOS 18.4 Control Center.
Apple fixes dangerous zero-day used in attacks against iPhones and iPads
Trump
Hackers are abusing $TRUMP tokens to lure victims in to new phishing scam
Latest in News
Lilo & Stitch Official Trailer
Stitch crashes into earth and steals our hearts with the first trailer for the live-action Lilo & Stitch
GTA 5
GTA Online publisher Take-Two is gunning for a black market that’s basically heaven for cheaters
Y2K cast looking shocked
Y2K has a streaming release date on Max, so you can witness the technology uprising at home
The Discovery+ homepage
Discovery+ just got a big update to its streaming app that makes it more like Max – here are 5 great new features to try
Two Android phones on a green and blue background showing Google Messages
Struggling with slow Google Messages photo transfers? Google says new update will make 'noticeable difference'
China
Chinese hackers targeting Juniper Networks routers, so patch now
More about security
China

Chinese hackers targeting Juniper Networks routers, so patch now
Google Chrome dark mode

Google updates Chrome extension rules to ban affiliate link injection without user action or benefit
ThreatLocker CEO Danny Jenkins speaking at ZTW25

“It’s made our jobs harder, not easier” - ThreatLocker CEO Danny Jenkins on AI
See more latest
Most Popular
Lilo & Stitch Official Trailer
Stitch crashes into earth and steals our hearts with the first trailer for the live-action Lilo & Stitch
Y2K cast looking shocked
Y2K has a streaming release date on Max, so you can witness the technology uprising at home
China
Chinese hackers targeting Juniper Networks routers, so patch now
GTA 5
GTA Online publisher Take-Two is gunning for a black market that’s basically heaven for cheaters
Bolt Zeus 2c26-032 PCIe card
This GPU vendor I've never heard of claims its card is 10x faster than an Nvidia RTX 5090 at real time path tracing
Google Meet create custom backgrounds
More AI features are coming to Google Workspace
A mockup of the possible Apple M3 Ultra logo
Performance isn't the only reason you should buy Apple's M3 Ultra Mac Studio - it's reportedly one of the most power-efficient processors too
The Discovery+ homepage
Discovery+ just got a big update to its streaming app that makes it more like Max – here are 5 great new features to try
Apple products all showing different versions of the Apple Photos app
Apple Photos could actually win you over in iOS 18.4 – here are 4 improvements that are coming
Google Chrome dark mode
Google updates Chrome extension rules to ban affiliate link injection without user action or benefit