""For as little as US $24 a month, RedVDS provides criminals with access to disposable virtual computers that make fraud cheap, scalable, and difficult to trace," said Steven Masada, assistant general counsel of Microsoft's Digital Crimes Unit. "Since March 2025, RedVDS‑enabled activity has driven roughly US $40 million in reported fraud losses in the United States alone." Crimeware-as-a-service (CaaS) offerings have increasingly become a lucrative business model,"
"transforming cybercrime from what once was an exclusive domain that required technical expertise into an underground economy where even inexperienced and aspiring threat actors can carry out complex attacks quickly and at scale. These turnkey services span a wide spectrum of modular tools, ranging from phishing kits to stealers to ransomware, effectively contributing to the professionalization of cybercrime and emerging as a catalyst for sophisticated attacks."
"Microsoft said RedVDS was advertised as an online subscription service that provides cheap and disposable virtual computers running unlicensed software, including Windows, so as to empower and enable criminals to operate anonymously and send high‑volume phishing emails, host scam infrastructure, pull off business email compromise (BEC) schemes, conduct account takeovers, and facilitate financial fraud. Specifically, it served as a hub for purchasing unlicensed and inexpensive Windows-based Remote Desktop Protocol (RDP) servers with full administrator control a"
Microsoft coordinated legal action with U.S. and U.K. authorities to disrupt RedVDS, a cybercrime subscription service providing disposable Windows-based virtual computers for criminals. For as little as US $24 per month, RedVDS enabled anonymous, high-volume phishing, scam hosting, business email compromise, account takeovers, and financial fraud, contributing to roughly US $40 million in reported U.S. losses since March 2025. Crimeware-as-a-service offerings professionalize cybercrime by offering turnkey modules like phishing kits, stealers, and ransomware. The operation confiscated malicious infrastructure and took redvds[.]com offline, removing access to unlicensed RDP servers with administrator control.
Read at The Hacker News
Unable to calculate read time
Collection
[
|
...
]