Malware as a service: How cybercrime became a scalable business

This report outlines how malware has shifted into commodified, service-driven markets (MaaS/RaaS), describing distribution and monetization models—including PPI, plug‑and‑play and DIY kits, subscription platforms, affiliate ransomware programs, BaaS, and dropper/loader services—explains the resulting expansion of low-skill threat actors and operational scale, and recommends adopting Zero Trust principles to reduce impact and lateral spread.