People, organisations, and governments have tried to discover strategies to fight against the danger of large-scale cyberattacks (such as ransomware and distributed denial of service (DDoS) assaults) and criminality. In 2017, the WannaCry ransomware was to blame for approximately 45,000 strikes across nearly 100 nations. Governments are under pressure to enhance their cybersecurity spending due to the increasing effect of cybercrime. As part of his 2017 budget, U.S. President Barack Obama suggested allocating more than $19 billion on cybersecurity, a more than 35% increase over 2016. As a result, the cybercriminal underground has changed into a brand-new kind of group that runs underground marketplaces and fosters the growth of cybercriminal conspiracies. Cybercrime networks, in contrast, are lateral, diffuse, fluid, and dynamic. Governments, organisations, and people are typically unaware of the threat posed by the development of highly professional network-based cybercrime business models, such as crime ware-as-a-service (CaaS). Despite the quick rise in cyberthreats, little is known about the basics of the field or the approaches that can help practitioners and researchers in information systems who are interested in cybersecurity. Additionally, little is known about Crime-as-a-Service (CaaS), the illegal business model that supports the shadowy world of cybercrime