Play Ransomware Goes Commercial – Now Offered as a Service to Cybercriminals

The ransomware strain known as Play is now available to other threat actors as a service, according to cybersecurity company Adlumin. It states that the lack of variations between attacks indicates the ransomware is being sold with a step-by-step execution guide. Play, which uses flaws in Microsoft Exchange Server to infiltrate networks, was previously unique as its developers conducted the attacks, indicating a shift to RaaS (Ransomware as a Service) is a new development.