How Ransomware attack works? (Models & Methodologies)

The history of ransomware attacks starts in 1989. The first known attack targeted the healthcare industry (De Groot, 2020). Currently, ransomware attacks are one of the most popular cyber attacks. It is as one of the biggest threats to cybersecurity (Thomas, 2019).

 
Ransomware is a type of malware, which is basing on files encryption. To do this type of attack, hackers are using different software. However, the method of the attack is usually the same.

 

 

Ransomware attack process (The Asean Post, 2019)  
 

1. Spam attachment
The most popular method of spreading ransomware is sending the email spam with infected link or attachment inside. Usually, a message in the email is telling an action is required. For example, the hacker is sending an email with an infected file named as "invoice" to the business owner (De Groot, 2020).

  
2. Malware execution
The user, which is aware of receiving infected email is opening the attachment. The virus starts running in the background, without any alert (Singh, 2020).


3. Files encryption/Computer locked
Depends on the virus, files excluding this required to turn on the computer can be encrypted or access to a computer can be blocked. On the screen, the user can see the information about the attack and further steps, which the user has to follow to restore access. Usually, a user has to transfer money to the bitcoin wallet of a hacker (De Groot, 2020).


4. Ransom demand
As I mentioned before, usually hacker wants to receive bitcoin transfer. If the user will pay, a hacker will probably send decryption key, which will allow restoring access. However, Rashid (2016) mentioned that many attacked users paid and never regain access to the files.



References:

De Groot, J., 2020. A History Of Ransomware Attacks: The Biggest And Worst Ransomware Attacks Of All Time. [online] Digital Guardian. Available at: <https://digitalguardian.com/blog/history-ransomware-attacks-biggest-and-worst-ransomware-attacks-all-time#1> [Accessed 10 December 2020].

Rashid, F., 2016. 4 Reasons Not To Pay Up In A Ransomware Attack. [online] InfoWorld. Available at: <https://www.infoworld.com/article/3043197/4-reasons-not-to-pay-up-in-a-ransomware-attack.html> [Accessed 10 December 2020].

Singh, A., 2020. Complete Guide To Ransomware: How To Recover And Prevent An Attack. [online] Backblaze Blog | Cloud Storage & Cloud Backup. Available at: <https://www.backblaze.com/blog/complete-guide-ransomware/> [Accessed 11 December 2020].

Thomas, J., 2019. Ransomware Could Cripple ASEAN. [online] The ASEAN Post. Available at: <https://theaseanpost.com/article/ransomware-could-cripple-asean> [Accessed 10 December 2020]. 

Comments

  1. Test11 December 2020 at 07:20

    Hi

    You can still add some more in text citations in the posts
    for eg: in paragraphs of
    2. Malware execution and 3. Files encryption/Computer locked

    Many thanks
    Chirag

    ReplyDelete

Post a Comment

Popular posts from this blog

SSL Asymmetric Encryption (Diagram 2)

Image
SSL Cryptography bases two types of encription, which is Asymmetric Encryption and Symmetric Encryption (Johansen, 2020). Asymetric Encription: This type of encryption is the most popular one, which is using usually. In this technology, client and server to connect use two different keys, public and private. Public key is using only for encryption. It means, anyone can use this key to encrypt the message. Private key is secret and is using only for decryption.   Asymmetric encryption (Author's work) Resources: Johansen, A., 2020. What Is Encryption And How Does It Protect Your Data? . [online] Us.norton.com. Available at: <https://us.norton.com/internetsecurity-privacy-what-is-encryption.html> [Accessed 20 November 2020].
Read more

Opinion about safety (Survey Analysis)

Image
In my questionnaire, I asked people about their feeling of internet safety. The question was "How safe do you feel with using internet services?" Author's work, 1 - not safe, 5 - very safe         As we can see, the majority of the group is feeling safe on the Internet. Only 6 of the responders are feeling completely safe, which is negative, because they may be less focused during using the Internet, which can cause an opportunity to be charmed by hackers. Development of cybersecurity technologies is possibly a reason, why nobody feels completely unsafe on the Internet. Author's work, 1 - not safe, 5 - very safe   However, the general feeling of safety on the Internet is not related to using online payments. As we can see in the diagram, more people are worried about their safety in case of online payments. Comparison of these 2 diagrams may suggest, people are more worried about their money, than their sensitive data such as name, address, location etc.
Read more