Ransomware deployment methods and analysis: views from a predictive model and human responses

Hull, Gavin; John, Henna; Arief, Budi

doi:10.1186/s40163-019-0097-9

Cited by 70 publications

(38 citation statements)

References 16 publications

(23 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…nomoreransom.org/). Naturally, after the widely reported 'success' of Cryptolocker, there has been an explosion in the number of ransomware strands [21,22]. There are now readily available development kits selling in the black market alongside Ransomware-as-a-Service (RaaS).…”

Section: Background On Ransomwarementioning

confidence: 99%

An economic analysis of ransomware and its welfare consequences

Hernández-Castro

Cartwright

2020

R. Soc. open sci.

View full text Add to dashboard Cite

We present in this work an economic analysis of ransomware, a relatively new form of cyber-enabled extortion. We look at how the illegal gains of the criminals will depend on the strategies they use, examining uniform pricing and price discrimination. We also explore the welfare costs to society of such strategies. In addition, we present the results of a pilot survey which demonstrate proof of concept in evaluating the costs of ransomware attacks. We discuss at each stage whether the different strategies we analyse have been encountered already in existing malware, and the likelihood of them being implemented in the future. We hope this work will provide some useful insights for predicting how ransomware may evolve in the future.

show abstract

Section: Background On Ransomwarementioning

confidence: 99%

An economic analysis of ransomware and its welfare consequences

Hernández-Castro

Cartwright

2020

R. Soc. open sci.

View full text Add to dashboard Cite

show abstract

“…Therefore, the main contribution of Hull et al [25] is a predictive model for categorizing ransomware behavioral characteristics, which can then be used to ameliorate uncovering and dealing with ransomware incidents. The categorization was done with respect to the deployment stages of ransomware, by establishing a predictive model called "Randep".…”

Section: Categorizing Ransomware Characteristicsmentioning

confidence: 99%

Ransomware Prevention and Mitigation Techniques

Alshaikh¹,

Ramadan²,

Ahmed³

2020

IJCA

View full text Add to dashboard Cite

Ransomware is a malware family that using security techniques such as cryptography to hijacking user files and associated resources and requests cryptocurrency in exchange for the locked data. There is no limit to who can be targeted by ransomware since it can be transmitted over the internet. Like traditional malware, ransomware may enter the system utilizing "social engineering, malware advertising, spam emails, take advantage of vulnerabilities, drive-by downloads or through open ports or by utilizing back doors". But in contrast to traditional malware, even after removal, ransomware influence is irreparable and tough to alleviate its impact without its creator assistance. This kind of attack has a straightforward financial implication, which is fueled by encryption technology, cyber currency. Therefore, ransomware has turned into a profitable business that has obtained rising popularity between attackers. As stated by "Cybersecurity Ventures", ransomware is the quickest increasing type of cybercrime. Since, global ransomware wastage expense is predicted to hit $20 billion in 2021, up from just $325 million in 2015 which, is 57X extra in 2021. In this paper, a brief of the recent research in the prevention of ransomware attacks and the best practices to mitigate the attack impact is presented. General TermsRansomware prevention technique, ransomware mitigation technique, signature-based, behavior-based.

show abstract

“…Broadly speaking, ransomware is a form of malware in which the victim of a cyber-attack is blackmailed. The term has recently become synonymous with crypto-ransomware wherein the files on a victims device are encrytped and a ransom is demanded for the key to decrypt those files [1][2][3][4]. While ransomware dates back to the AIDS Trojan in 1989, it has come to prominence over the last five years or so with an explosion in the number of ransomware strands and victims [5].…”

Section: Introductionmentioning

confidence: 99%

“…Recent evidence suggests that victims who pay the ransom recover their data around 50% of the time [14]. 1 That may be enough to tempt victims to try their luck and pay up. So, have the criminals, consciously or not, hit upon a good strategy?…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Ransomware and Reputation

Cartwright

2019

Games

View full text Add to dashboard Cite

Ransomware is a particular form of cyber-attack in which a victim loses access to either his electronic device or files unless he pays a ransom to criminals. A criminal's ability to make money from ransomware critically depends on victims believing that the criminal will honour ransom payments. In this paper we explore the extent to which a criminal can build trust through reputation. We demonstrate that there are situations in which it is optimal for the criminal to always return the files and situations in which it is not. We argue that the ability to build reputation will depend on how victims distinguish between different ransomware strands. If ransomware is to survive as a long term revenue source for criminals then they need to find ways of building a good reputation.

show abstract

Ransomware deployment methods and analysis: views from a predictive model and human responses

Cited by 70 publications

References 16 publications

An economic analysis of ransomware and its welfare consequences

An economic analysis of ransomware and its welfare consequences

Ransomware Prevention and Mitigation Techniques

Ransomware and Reputation

Contact Info

Product

Resources

About