Ransomware Attacks of the COVID-19 Pandemic: Novel Strains, Victims, and Threat Actors

Baig, Zubair; Mekala, Sri Harsha; Zeadally, Sherali

doi:10.1109/mitp.2023.3297085

Cited by 5 publications

(2 citation statements)

References 6 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…This type of implementation involving local keys puts the ransomware encryption scheme at risk of being blocked by the protection offered by anti-virus software which could also reveal the key to the victim. Due to this potential issue, asymmetric encryption is often used resulting in slower encryption along with a high risk of detection [10].…”

Section: Anatomy Of a Ransomware Attackmentioning

confidence: 99%

The Ransomware Epidemic: Recent Cybersecurity Incidents Demystified

Temara

2024

AJARR

View full text Add to dashboard Cite

The pervasive threat of ransomware poses a significant risk to businesses across various scales as cybercriminals continue to exploit vulnerabilities causing severe disruptions and demanding substantial ransom payments. This review conducts a comprehensive literature review delving into recent ransomware attacks to analyze key aspects, including the targeted organizations, attack vectors, threat actors, propagation mechanisms, and the resulting business impact. The study goes beyond a surface examination by exploring the evolving nature of ransomware attacks, encompassing different types, attack vectors, and emerging tactics, such as double extortion, where cybercriminals not only encrypt data but also exfiltrate and threaten to release it publicly unless a ransom is paid. High-profile incidents, including those involving SickKids Hospital, Royal Mail, Dish Network, Five Guys, and ION are scrutinized to glean insights into the intricacies of these attacks. The review also evaluates the effectiveness of existing ransomware defenses and proposes potential strategies for organizations to counteract, identify, and manage ransomware incidents. The findings underscore the critical need for organizations to comprehend the evolving ransomware landscape and implement robust cybersecurity measures to protect both internal and external stakeholders. As ransomware continues to evolve in complexity, this study provides valuable insights emphasizing the importance of proactive defenses to mitigate the risks posed by this growing threat.

show abstract

Section: Anatomy Of a Ransomware Attackmentioning

confidence: 99%

The Ransomware Epidemic: Recent Cybersecurity Incidents Demystified

Temara

2024

AJARR

View full text Add to dashboard Cite

show abstract

“…The majority of these malicious programs are designed to exploit users' security unawareness and inadequate permission settings [1,16,17,18,19]. Some ransomware strains specifically target accessibility services on Android to gain elevated privileges [15,20,21]. Encryption tactics used by these malicious entities often exploit the Android file system, manipulating file types that are crucial to users [22,23,24,25].…”

Section: Ransomware On Androidmentioning

confidence: 99%

An Effective Strategy for Ransomware Mitigation on Android Devices via Android OS File System API

Ozturk,

Yilmaz,

Arslan

et al. 2024

Preprint

View full text Add to dashboard Cite

The development and effectiveness of an API-based system for mitigating ransomware threats on Android devices was explored in this study. Leveraging the Android/Linux file system API, the proposed system enhances the detection and prevention of ransomware by monitoring suspicious file system activities. The methodology includes extensive testing across various Android models and versions, demonstrating a high detection rate with minimal false positives. Results indicate that integrating system-level APIs into security frameworks significantly improves response times and device integrity against ransomware attacks. This paper contributes to mobile cybersecurity by providing a scalable and effective strategy for ransomware mitigation, proposing future enhancements with advanced predictive algorithms and broader system integration.

show abstract