Ransomware is a malicious cyber-attack in which a user's files are encrypted and rendered inaccessible until the attacker receives a ransomed amount in return for the decryption key. The advanced yet unsophisticated nature of the malware allows for the development of many types of ransomware; thwarting any type of long-term countermeasure from being effective. This allows both professional cyber-criminals and novice script kiddies to operate attacks with devastating potential. With the introduction of crypto-currencies most ransomware interactions can be untraceable. This paper is directed at an overview of ransomware, the stages of a typical ransomware attack, and defense mechanism against ransomware. Diving into recent attacks, using reverse engineering and methodologies to get a core idea of how all ransomware functions.
展开▼