loader gif

Jokeroo Ransomware as a Service Pulls an Exit Scam

Jokeroo Ransomware as a Service Pulls an Exit Scam (Malware and Vulnerabilities)

Since May 7th, 2019, the Tor sites for the Jokeroo Ransomware as a Service (RaaS) have started displaying a notice stating that their server was seized by the Royal Thai Police in conjunction with the Dutch National Police and Europol. Exit scams are being more common as law enforcement increases pressure on illegal activities on Tor and criminal sites. When we first saw the seized notice on Jokeroo's Tor servers, we quickly grew suspicious as the notice was missing words, had unusual wording, and was more descriptive regarding why the site was seized that you normally see. Jokeroo Site Seized Notice The full text of this notice can be read below. The police investigation focus on the criminal activities of Jokeroo and the people behind Jokeroo. Jokeroo uses the Dutch (digital) infrastructure to provide services to criminals by renting out servers from which criminal activities can be deployed such as sending spam messages and causing RANSOMWARE attacks, The takedown of Jokeroo is a coordinated effort by law enforcement agencies from Thailand and The Netherlands, Europol.

loader gif