Reference : Dual-Use Research In Ransomware Attacks: A Discussion on Ransomware Defence Intelligence
Scientific congresses, symposiums and conference proceedings : Paper published in a book
Engineering, computing & technology : Computer science
Security, Reliability and Trust
http://hdl.handle.net/10993/42164
Dual-Use Research In Ransomware Attacks: A Discussion on Ransomware Defence Intelligence
English
Genç, Ziya Alper mailto [University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > >]
Lenzini, Gabriele [University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > >]
Sgandurra, Daniele []
In press
Proceedings of the 6th International Conference on Information Systems Security and Privacy
Yes
No
International
6th International Conference on Information Systems Security and Privacy (ICISSP 2020)
25-27 February 2020
Valletta
Malta
[en] Ransomware ; Double Use Research in Cryptography ; Threat Intelligence and Counter-Intelligence
[en] Previous research has shown that developers rely on public platforms and repositories to produce functional but insecure code. We looked into the matter for ransomware, enquiring whether also ransomware engineers re-use the work of others and produce insecure code. By methodically reverse-engineering 128 malware executables, we have found that, out of 21 ransomware samples, 9 contain copy-paste code from public resources. Thanks to this finding, we managed to retrieve the decryption keys with which to nullify the ransomware attacks. From this fact, we recall critical cases of code disclosure in the recent history of ransomware and, arguing that ransomware are components in cyber-weapons, reflect on the dual-use nature of this research. We further discuss benefits and limits of using cyber-intelligence and counter-intelligence strategies that could be used against this threat.
Interdisciplinary Centre for Security, Reliability and Trust (SnT) > Applied Security and Information Assurance Group (APSIA)
Researchers ; Professionals ; Students ; General public ; Others
http://hdl.handle.net/10993/42164

File(s) associated to this reference

Fulltext file(s):

FileCommentaryVersionSizeAccess
Open access
gl2020.pdfAuthor postprint279.15 kBView/Open

Bookmark and Share SFX Query

All documents in ORBilu are protected by a user license.