Social engineering as an attack vector for ransomware

Pablo L. Gallegos-Segovia; Paúl E. Vintimilla-Tapia; Jack F. Bravo-Torres; Iván F. Yuquilima-Albarado; Víctor M. Larios-Rosillo; Juan D. Jara-Saltos

doi:10.1109/CHILECON.2017.8229528

Social engineering as an attack vector for ransomware

Pablo L. Gallegos-Segovia, Paúl E. Vintimilla-Tapia, Jack F. Bravo-Torres, Iván F. Yuquilima-Albarado, Víctor M. Larios-Rosillo, Juan D. Jara-Saltos

Research output: Contribution to conference › Paper

28 Scopus citations

Abstract

© 2017 IEEE. Constant ransomware attacks achieve to evade multiple security perimeters, because its strategy is based on the exploitation of users—the weakest link in the security chain—getting high levels of effectiveness. In this paper, an in-depth analysis of the anatomy of the ransomware is develop, and how they combine technology with manipulation, through social engineering, to meet their goals and compromise thousands of computers. Finally, simulations of the phases that it follows are carried out, leaving the necessary guidelines to evaluate the security of the information, and thus, generate policies that minimize the risks of loss of information.

Original language	English (US)
Pages	1-6
Number of pages	6
DOIs	https://doi.org/10.1109/CHILECON.2017.8229528
State	Published - 19 Dec 2017
Event	2017 CHILEAN Conference on Electrical, Electronics Engineering, Information and Communication Technologies, CHILECON 2017 - Proceedings - Pucon, Chile Duration: 18 Oct 2017 → 20 Oct 2017

Conference

Conference	2017 CHILEAN Conference on Electrical, Electronics Engineering, Information and Communication Technologies, CHILECON 2017 - Proceedings
Abbreviated title	CHILECON 2017
Country/Territory	Chile
City	Pucon
Period	18/10/17 → 20/10/17

Access to Document

10.1109/CHILECON.2017.8229528

Cite this

Gallegos-Segovia, P. L., Vintimilla-Tapia, P. E., Bravo-Torres, J. F., Yuquilima-Albarado, I. F., Larios-Rosillo, V. M., & Jara-Saltos, J. D. (2017). Social engineering as an attack vector for ransomware. 1-6. Paper presented at 2017 CHILEAN Conference on Electrical, Electronics Engineering, Information and Communication Technologies, CHILECON 2017 - Proceedings, Pucon, Chile. https://doi.org/10.1109/CHILECON.2017.8229528

@conference{3c9a84bde71f45aca63ed73ba148ea3c,

title = "Social engineering as an attack vector for ransomware",

abstract = "{\textcopyright} 2017 IEEE. Constant ransomware attacks achieve to evade multiple security perimeters, because its strategy is based on the exploitation of users—the weakest link in the security chain—getting high levels of effectiveness. In this paper, an in-depth analysis of the anatomy of the ransomware is develop, and how they combine technology with manipulation, through social engineering, to meet their goals and compromise thousands of computers. Finally, simulations of the phases that it follows are carried out, leaving the necessary guidelines to evaluate the security of the information, and thus, generate policies that minimize the risks of loss of information.",

author = "Gallegos-Segovia, {Pablo L.} and Vintimilla-Tapia, {Pa{\'u}l E.} and Bravo-Torres, {Jack F.} and Yuquilima-Albarado, {Iv{\'a}n F.} and Larios-Rosillo, {V{\'i}ctor M.} and Jara-Saltos, {Juan D.}",

year = "2017",

month = dec,

day = "19",

doi = "10.1109/CHILECON.2017.8229528",

language = "English (US)",

pages = "1--6",

note = "2017 CHILEAN Conference on Electrical, Electronics Engineering, Information and Communication Technologies, CHILECON 2017 - Proceedings, CHILECON 2017 ; Conference date: 18-10-2017 Through 20-10-2017",

}

Gallegos-Segovia, PL, Vintimilla-Tapia, PE, Bravo-Torres, JF, Yuquilima-Albarado, IF, Larios-Rosillo, VM & Jara-Saltos, JD 2017, 'Social engineering as an attack vector for ransomware', Paper presented at 2017 CHILEAN Conference on Electrical, Electronics Engineering, Information and Communication Technologies, CHILECON 2017 - Proceedings, Pucon, Chile, 18/10/17 - 20/10/17 pp. 1-6. https://doi.org/10.1109/CHILECON.2017.8229528

Social engineering as an attack vector for ransomware. / Gallegos-Segovia, Pablo L.; Vintimilla-Tapia, Paúl E.; Bravo-Torres, Jack F. et al.
2017. 1-6 Paper presented at 2017 CHILEAN Conference on Electrical, Electronics Engineering, Information and Communication Technologies, CHILECON 2017 - Proceedings, Pucon, Chile.

Research output: Contribution to conference › Paper

TY - CONF

T1 - Social engineering as an attack vector for ransomware

AU - Gallegos-Segovia, Pablo L.

AU - Vintimilla-Tapia, Paúl E.

AU - Bravo-Torres, Jack F.

AU - Yuquilima-Albarado, Iván F.

AU - Larios-Rosillo, Víctor M.

AU - Jara-Saltos, Juan D.

PY - 2017/12/19

Y1 - 2017/12/19

N2 - © 2017 IEEE. Constant ransomware attacks achieve to evade multiple security perimeters, because its strategy is based on the exploitation of users—the weakest link in the security chain—getting high levels of effectiveness. In this paper, an in-depth analysis of the anatomy of the ransomware is develop, and how they combine technology with manipulation, through social engineering, to meet their goals and compromise thousands of computers. Finally, simulations of the phases that it follows are carried out, leaving the necessary guidelines to evaluate the security of the information, and thus, generate policies that minimize the risks of loss of information.

AB - © 2017 IEEE. Constant ransomware attacks achieve to evade multiple security perimeters, because its strategy is based on the exploitation of users—the weakest link in the security chain—getting high levels of effectiveness. In this paper, an in-depth analysis of the anatomy of the ransomware is develop, and how they combine technology with manipulation, through social engineering, to meet their goals and compromise thousands of computers. Finally, simulations of the phases that it follows are carried out, leaving the necessary guidelines to evaluate the security of the information, and thus, generate policies that minimize the risks of loss of information.

UR - https://www.scopus.com/inward/record.uri?partnerID=HzOxMe3b&scp=85043293147&origin=inward

UR - https://www.scopus.com/inward/citedby.uri?partnerID=HzOxMe3b&scp=85043293147&origin=inward

U2 - 10.1109/CHILECON.2017.8229528

DO - 10.1109/CHILECON.2017.8229528

M3 - Paper

SP - 1

EP - 6

T2 - 2017 CHILEAN Conference on Electrical, Electronics Engineering, Information and Communication Technologies, CHILECON 2017 - Proceedings

Y2 - 18 October 2017 through 20 October 2017

ER -

Gallegos-Segovia PL, Vintimilla-Tapia PE, Bravo-Torres JF, Yuquilima-Albarado IF, Larios-Rosillo VM, Jara-Saltos JD. Social engineering as an attack vector for ransomware. 2017. Paper presented at 2017 CHILEAN Conference on Electrical, Electronics Engineering, Information and Communication Technologies, CHILECON 2017 - Proceedings, Pucon, Chile. doi: 10.1109/CHILECON.2017.8229528

Social engineering as an attack vector for ransomware

Abstract

Conference

Access to Document

Other files and links

Fingerprint

Cite this