Affiliation:
1. Cyber-Physical Systems Security Lab, Department of Electrical & Computer Engineering, Florida International University, Miami, Florida, USA
2. Faculty of Engineering and Natural Sciences, Sabanci University, Orhanli Tuzla, Istanbul, Turkey
3. Cyber-Physical Systems Security Lab, Department of Electrical & ComputerEngineering, Florida International University, Miami, Florida, USA
Abstract
In recent years, ransomware has been one of the most notorious malware targeting end-users, governments, and business organizations. It has become a very profitable business for cybercriminals with revenues of millions of dollars, and a very serious threat to organizations with financial losses of billions of dollars. Numerous studies were proposed to address the ransomware threat, including surveys that cover certain aspects of ransomware research. However, no study exists in the literature that gives the complete picture on ransomware and ransomware defense research with respect to the diversity of targeted platforms. Since ransomware is already prevalent in PCs/workstations/desktops/laptops, and is becoming more prevalent in mobile devices, and has already hit IoT/CPS recently, and will likely grow further in the IoT/CPS domain very soon, understanding ransomware and analyzing defense mechanisms with respect to target platforms is becoming more imperative. In order to fill this gap and motivate further research, in this paper, we present a comprehensive survey on ransomware and ransomware defense research with respect to PCs/workstations, mobile devices, and IoT/CPS platforms. Specifically, covering 137 studies over the period of 1990-2020, we give a detailed overview of ransomware evolution, comprehensively analyze the key building blocks of ransomware, present a taxonomy of notable ransomware families, and provide an extensive overview of ransomware defense research (i.e., analysis, detection, and recovery) with respect to platforms of PCs/workstations, mobile devices, and IoT/CPS. Moreover, we derive an extensive list of open issues for future ransomware research. We believe this survey will motivate further research by giving a complete picture on state-of-the-art ransomware research.
Funder
US National Science Foundation Awards
Publisher
Association for Computing Machinery (ACM)
Subject
General Computer Science,Theoretical Computer Science
Reference205 articles.
1. Particle Swarm Optimization: A Wrapper-Based Feature Selection Method for Ransomware Detection and Classification
2. A Survey on Preventing Crypto Ransomware Using Machine Learning
3. Netwalker Ransomware Hits Argentinian Government, Demands $4 Million;Abrams Lawrance;https://www.bleepingcomputer.com/news/security/netwalker-ransomware-hits-argentinian-government-demands- 4-million/,2020
4. SunCrypt Ransomware Shuts Down North Carolina School District;Abrams L.;https://www.bleepingcomputer.com/news/security/suncrypt-ransomware-shuts-down-north-carolina-school-district/,2020
5. Automated analysis approach for the detection of high survivable ransomware;Abukar Y.;KSII Transactions on Internet and Information Systems,2020
Cited by
102 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献