WannaCry Ransomware Analysis. 1 day, 150 countries, > 57k infected computers
Journal Title: Asigurarea Calităţii – Quality Assurance - Year 2017, Vol 0, Issue 90
Abstract
With the advent of complex techniques, tactics and procedures used by the adversaries, Information Technology Professionals focus their efforts on defending environments from advanced persistent threats and highly sophisticated attacks. WannaCry ransomware came in as a caveat in this context, a way of reminding the industry that efforts should be divided into addressing the various layers of the defense in depth model. This paper is intended to present this type of malware on the rise that affects users in both enterprise and personal space as well by encrypting user developed content and restricting access until ransom is paid. The main focus is on the description of the virus technical details concentrating on the phases of the cyber kill chain. Therefore, the authors perform an analysis of WannaCry ransomware from the delivery, infection, mitigation and detection perspectives. The long-term goal of these efforts is to anticipate threats before turning into incidents and, consequently, decrease the impact. This research represents the starting point of a process of reducing the attack surface in the case of ransomware attacks. Needless to say, the first layer worth addressing is represented by the weakest chain in the information security link, the end user.
Authors and Affiliations
Cristian PASCARIU, Ionuţ-Daniel BARBU, Ioan C. BACIVAROV
Keywords
Related Articles
- EP ID EP192213
- DOI -
- Views 147
- Downloads 0
Three Decades of Successful Conferences in Quality and Dependability – CCF
The coordinators of the International Conferences in Quality and Dependability – CCF present the evolution of the CCF conferences, which became an important international forum for the dissemination of recent information...
SSL Digital Certificates Analysis
The explosive development of Internet services has led to the appearance of security threats regarding transmitted or stored data privacy. A powerful solution for the authentication of Web servers is the SSL digital cert...
ISO 9000: Three Decades of Risk Management
Starting or developing a project always requires us to take risks. Therefore, it is important to identify, analyze, control and manage these risks. The article defines different types of risks and describes certain speci...
In memoriam Joseph M. JURAN (1904-2008). The Quality Trilogy. A Universal Approach to Managing for Quality
Ten years ago, the great Quality Management Guru Joseph M. JURAN passed into eternity. In order to mark this moment, we publish one of his most representative papers, the well-known Juran Quality Trilogy. In 1987, I aske...
WannaCry Ransomware Analysis. 1 day, 150 countries, > 57k infected computers
With the advent of complex techniques, tactics and procedures used by the adversaries, Information Technology Professionals focus their efforts on defending environments from advanced persistent threats and highly sophis...