Review of the Malware Categorization in the Era of Changing Cybethreats Landscape: Common Approaches, Challenges and Future Needs

Shalaginov, Andrii; Dyrkolbotn, Geir Olav; Alazab, Mamoun

doi:10.1007/978-3-030-62582-5_3

Cited by 6 publications

(6 citation statements)

References 17 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Despite the proliferation of scholarly research on ransomware focusing on technical aspects, including detection and prevention systems, a paucity of research examines the socio-technical dimensions or the experiences of victimized organizations, emphasizing the need for comprehensive preventative measures (Yuryna Connolly et al, 2020;Holt & Bossler, 2017;. While the frequency of ransomware attacks against enterprises is increasing, it remains challenging to measure accurately, with varying statistics globally, indicating the complex nature of cybercrime victimization and the evolving threat landscape (Alshaikh et al, 2020;Shalaginov et al, 2020;Ahmed, 2019). Small and medium-sized enterprises (SMEs) often underestimate their vulnerability, with the entrepreneurial nature of SMEs contributing to risk-taking behavior, underscoring the importance of acknowledging equivalent risk levels and implementing robust cybersecurity measures (Bamrara, 2018;Smith, 2017;Kurpjuhn, 2015).…”

Section: Impact On the Organizationmentioning

confidence: 99%

“…Businesses, especially those in the financial sector, emergency services such as law enforcement, fire departments, hospitals, and private sector organizations are prominent targets for ransomware attacks due to the valuable data they hold, the potential for significant consequences, and the vulnerabilities in their security systems, leading to potential financial losses, reputational damage, and customer loss (Maurya et al, 2018;Shalaginov et al, 2020;Kumar et al, 2016;Connolly et al, 2020).…”

Section: Impact On the Organizationmentioning

confidence: 99%

“…The encryption success rate rose, and the extortion-only attack incidence dropped, indicative of an evolving and more challenging threat landscape (Sophos, 2021;Kumar et al, 2016;Shalaginov et al, 2020). The impact of ransomware extends beyond financial costs, for instance, significant disruptions to operations, loss of business/revenue, and expenditure for mitigation (Kumar et al, 2016;Shinde et al, 2016;Sen & Chourey, 2020).…”

Section: Impact On the Organizationmentioning

confidence: 99%

“…Notably, cyber insurance plays a crucial role in mitigating financial risks, but the increasing difficulty in obtaining coverage prompts organizations to enhance their cyber defences to bolster their insurance position (Sen & Chourey, 2020). The global impact of ransomware is exemplified by significant incidents such as the 2019 RobinHood attack on Baltimore, the 2021 Colonial Pipeline ransomware outbreak, and the 2021 Health Service Executive attack in Ireland, underscoring the pervasive and damaging nature of these attacks across diverse sectors (Yilmaz et al, 2022;Shalaginov et al, 2020). In 2022, the Ministry of Finance of Costa Rica experienced a ransomware attack, causing economic disruptions, even though the government refused to negotiate, highlighting the ongoing challenges posed by these threats (Shalaginov et al, 2020).…”

Section: Impact On the Organizationmentioning

confidence: 99%

See 3 more Smart Citations

Evolution and Impact of Ransomware: Patterns, Prevention, and Recommendations for Organizational Resilience

Muniandy,

Ismail,

Yahya Al-Nahari

et al. 2024

IJARBSS

View full text Add to dashboard Cite

Ransomware, manifesting as Crypto or Locker, poses a significant threat to fundamental computer systems and infrastructures with the primary goal of extracting financial gain from victims through ransom demands for decryption keys. This paper delves into the evolving landscape of ransomware, a persistent and advancing form of malicious software. Besides, this paper explores the development, patterns, and methods of ransomware attacks, scrutinizing their impact on organizations over time. In addition, this study examines the root causes of ransomware's organizational impact and evaluates its evolving scales. The investigation also addresses proactive measures organizations can adopt, aligning with the cybersecurity standards, to enhance preparedness and awareness. Additionally, the study provides recommendations and preventive measures to mitigate the challenges posed by ransomware attacks.

show abstract

Section: Impact On the Organizationmentioning

confidence: 99%

Section: Impact On the Organizationmentioning

confidence: 99%

Section: Impact On the Organizationmentioning

confidence: 99%

Section: Impact On the Organizationmentioning

confidence: 99%

See 2 more Smart Citations

Evolution and Impact of Ransomware: Patterns, Prevention, and Recommendations for Organizational Resilience

Muniandy,

Ismail,

Yahya Al-Nahari

et al. 2024

IJARBSS

View full text Add to dashboard Cite

show abstract

“…It includes 25 classes of five common malware types, namely Adware, Trojan, Virus, Worm, Backdoor, and one benign class. In the following, we provide a brief definition of each of these malware types [53]:…”

Section: Datasetmentioning

confidence: 99%

A Novel Detection and Multi-Classification Approach for IoT-Malware Using Random Forest Voting of Fine-Tuning Convolutional Neural Networks

Atitallah

Driss

Almomani

2022

Sensors

View full text Add to dashboard Cite

The Internet of Things (IoT) is prone to malware assaults due to its simple installation and autonomous operating qualities. IoT devices have become the most tempting targets of malware due to well-known vulnerabilities such as weak, guessable, or hard-coded passwords, a lack of secure update procedures, and unsecured network connections. Traditional static IoT malware detection and analysis methods have been shown to be unsatisfactory solutions to understanding IoT malware behavior for mitigation and prevention. Deep learning models have made huge strides in the realm of cybersecurity in recent years, thanks to their tremendous data mining, learning, and expression capabilities, thus easing the burden on malware analysts. In this context, a novel detection and multi-classification vision-based approach for IoT-malware is proposed. This approach makes use of the benefits of deep transfer learning methodology and incorporates the fine-tuning method and various ensembling strategies to increase detection and classification performance without having to develop the training models from scratch. It adopts the fusion of 3 CNNs, ResNet18, MobileNetV2, and DenseNet161, by using the random forest voting strategy. Experiments are carried out using a publicly available dataset, MaleVis, to assess and validate the suggested approach. MaleVis contains 14,226 RGB converted images representing 25 malware classes and one benign class. The obtained findings show that our suggested approach outperforms the existing state-of-the-art solutions in terms of detection and classification performance; it achieves a precision of 98.74%, recall of 98.67%, a specificity of 98.79%, F1-score of 98.70%, MCC of 98.65%, an accuracy of 98.68%, and an average processing time per malware classification of 672 ms.

show abstract

Android Malware Detection with Classification Based on Hybrid Analysis and N-gram Feature Extraction

Ravi

Kumar²

2022

Advancements in Smart Computing and Information Security

View full text Add to dashboard Cite

Review of the Malware Categorization in the Era of Changing Cybethreats Landscape: Common Approaches, Challenges and Future Needs

Cited by 6 publications

References 17 publications

Evolution and Impact of Ransomware: Patterns, Prevention, and Recommendations for Organizational Resilience

Evolution and Impact of Ransomware: Patterns, Prevention, and Recommendations for Organizational Resilience

A Novel Detection and Multi-Classification Approach for IoT-Malware Using Random Forest Voting of Fine-Tuning Convolutional Neural Networks

Android Malware Detection with Classification Based on Hybrid Analysis and N-gram Feature Extraction

Contact Info

Product

Resources

About