A Three-Level Ransomware Detection and Prevention Mechanism

Authors

DOI:

https://doi.org/10.4108/eai.13-7-2018.162691

Keywords:

Malware, Petya, Ransomware, Security, Virtual Machine

Abstract

Ransomware encrypts victim’s files or locks users out of the system. Victims will have to pay the attacker a ransom to decrypt and regain access to the user files. Petya targets individuals and companies through email attachments and download links. NotPetya has worm-like capabilities and exploits EternalBlue and EternalRomance vulnerabilities. Protection methods include vaccination, applying patches, et cetera. Challenges faced to combat ransomware include social engineering, outdated infrastructures, technological advancements, backup issues, and conflicts of standards. ThreeLevel Security (3LS) is a solution to ransomware that utilizes virtual machines along with browser extensions to perform a scan, on any files that the user wishes to download from the Internet. The downloaded files would be sent over a cloud server relay to a virtual machine by a browser extension. Any changes to the virtual machine after downloading the file would be observed, and if there were a malfunction in the virtual machine, the file would not be retrieved to the user’s system.

Downloads

Download data is not yet available.

Downloads

Published

14-01-2020

How to Cite

1.
Loh Yee Ren A, Tze Liang C, Jun Hyug I, Nawaz Broh S, Jhanjhi N. A Three-Level Ransomware Detection and Prevention Mechanism. EAI Endorsed Trans Energy Web [Internet]. 2020 Jan. 14 [cited 2024 Dec. 18];7(26):e6. Available from: https://publications.eai.eu/index.php/ew/article/view/897