Points of Failure in the Ransomware Electronic Business Model

Cusack, Brian and Ward, Gerard (2018) Points of Failure in the Ransomware Electronic Business Model. AMERICAS CONFERENCE ON INFORMATION SYSTEMS (AMCIS).

Points of Failure in the Ransomware Electronic Business Model.pdf

Download (295kB) | Preview


Ransomware became the face of cybercrime in 2017 when waves of attacks breached business information systems, locking critical information. At first it appeared the perfect crime where whole organizations had lost access to their vital information and the only way out was to pay the attackers in Bitcoin for the key to the lock. However, the Ransomware business model requires the formation of a trust relationship between the attacker and the victim; and the potential for the formation and maintenance of a trust relationship became rapidly eroded by identifiable points of failure. In order to better understand the phenomena we spent 12 months of emersion in an exploratory study observing the business processes and technologies associated with Ransomware. We conclude that negative risk is still apparent for unprepared organizations, but within a period of time the erosion of trust will render the Ransomware crime uneconomical and the model ineffective.

Item Type: Article
Subjects: H Social Sciences > HB Economic Theory
Divisions: Faculty of Industrial Engineering and Informatics > Information System
Depositing User: staff repository 1
Date Deposited: 10 Sep 2018 15:20
Last Modified: 10 Sep 2018 15:20
URI: http://repository.ittelkom-pwt.ac.id/id/eprint/4862

Actions (login required)

View Item View Item