Researchers seek ransomware samples for their generic solution

Posted by   Virus Bulletin on   Sep 18, 2015

VB2015 presentation to include demonstration of technique against recent samples.

'The scary hack that's on the rise' is how Wired's Kim Zetter described ransomware in an overview article posted yesterday. Indeed, encrypting your files and demanding a ransom to decrypt them has become a very lucrative cybercriminal enterprise.

Of course, the best defence against ransomware is to make regular backups that are stored separately from the original device. But can security software perhaps play a role too and prevent ransomware from running in the first place?

Samir Mody and Gregory Panakkal, two researchers from K7 Computing in India, think it can. At VB2015 in Prague, they will present a paper 'Dead and buried in their crypts: defeating modern ransomware', in which they discuss a generic anti-ransomware solution they developed. Those who think anti-virus is all about signatures will be interested to know that the paper doesn't mention the word 'signatures' even once.

But presenting a nice theoretical solution is one thing, making sure it actually works is something else. Hence Samir and Gregory are asking those attending the conference to submit new ransomware samples, which they will test their solution against during their presentation.

There are more than 50 other talks on a diverse range of security-related topics on the VB2015 conference programme. Why not join us in Prague? Registration is still open.

Posted on 18 June 2015 by Martijn Grooten

twitter.png
fb.png
linkedin.png
googleplus.png
reddit.png

 

Latest posts:

Book review: Serious Cryptography

VB Editor Martijn Grooten recommends Jean-Philippe Aumasson's 'Serious Cryptography' as a very solid but practically focused introduction to cryptography.

Necurs pump-and-dump spam campaign pushes obscure cryptocurrency

A Necurs pump-and-dump spam campaign pushing the lesser known Swisscoin botnet is mostly background noise for the Internet.

Alleged author of creepy FruitFly macOS malware arrested

A 28-year old man from Ohio has been arrested on suspicion of having created the mysterious FruitFly malware that targeted macOS and used it to spy on its victims.

The threat and security product landscape in 2017

At the start of the new year, Virus Bulletin looks back at the threats seen in the 2017 and at the security products that are available to help mitigate them.

Spamhaus report shows many botnet controllers look a lot like legitimate servers

Spamhaus's annual report on botnet activity shows that botherders tend to use popular, legitimate hosting providers, domain registrars and top-level domains when setting up command-and-control servers.