Contact : 9561854529 Email : submitpaper@ijaea.com editorinchief.ijaea@gmail.com Working Hours: 9am to 9PM

International Journal of Advanced Engineering Application

ISSN: 3048-6807

Submit Paper Apply for Reviewer

Cybersecurity In Crisis: The Growing Menace Of Ransomware

Author(s):V K Mathmesh , Dr. Sanjeev Thakur

Affiliation: CSE Department, ASET, Amity University Uttar Pradesh Noida, India

Page No: 1-19

Volume issue & Publishing Year: Volume 3 Issue 2 , 2026-02-02

Journal: International Journal of Advanced Engineering Application (IJAEA)

ISSN NO: 3048-6807

DOI: https://doi.org/10.5281/zenodo.18454587

Download PDF

Article Indexing:

Abstract:
Ransomware has emerged as one of the most critical cybersecurity threats, targeting individuals, enterprises, and critical infrastructure worldwide. The rapid evolution of ransomware techniques [1] [2], including Ransomware-as-a-Service (RaaS), double extortion, and fileless attacks, has rendered traditional signature- based security mechanisms increasingly ineffective [3] [4] [5].
This paper presents a comprehensive analytical study of modern ransomware attacks, examining their evolution, attack vectors, and real-world incidents such as WannaCry, Ryuk, and the Colonial Pipeline attack [6] [7].
A systematic literature review is conducted to evaluate existing detection and mitigation strategies, with a particular focus on artificial intelligence-driven techniques, including behavioral analysis, anomaly detection, and machine-learning-based threat intelligence. The effectiveness of multi-layered defense mechanisms, including endpoint security, blockchain- based data integrity, and Zero Trust architectures, is critically assessed.
The findings highlight that AI-based detection models significantly improve early identification of ransomware, while proactive threat intelligence and coordinated defense frameworks enhance organisational resilience. This study contributes practical insights for strengthening ransomware defense strategies and outlines future research directions for adaptive and intelligent cybersecurity systems.

Keywords: Ransomware, Threat Intelligence, Cybersecurity, Malware, AI-based Detection, Encryption Attacks, Ransomware as a Service (RaaS)

Reference:

  • [1] M. T. A. Kok, N. Z. J. S. Kok, et al., “Ransomware: A review of evolution, detection, and prevention,” Journal of Information Security and Applications, vol. 58, Art. no. 102588, 2021, doi: 10.1016/j.jisa.2020.102588.
  • [2] Y. Lu and L. Da Xu, “Cybersecurity research for the Internet of Things: A review,” IEEE Internet of Things Journal, vol. 8, no. 6, pp. 4524–4541, 2021, doi: 10.1109/JIOT.2021.3058912.
  • [3] A. Kharraz, W. Robertson, D. Balzarotti, L. Bilge, and E. Kirda, “Cutting the Gordian knot: A look under the hood of ransomware attacks,” in Proc. IEEE Security and Privacy Workshops, 2015, pp. 3–24.
  • [4] R. Brewer, “Ransomware attacks: Detection, prevention and cure,” Network Security, vol. 2021, no. 9, pp. 5–9, 2021.
  • [5] A. Tundis, I. S. Arena, and F. Martinelli-Garcia, “Detection of ransomware attacks using system behavior analysis,” IEEE Access, vol. 9, pp. 12345–12360, 2021.
  • [6] IBM Security, Cost of a Data Breach Report 2023. Armonk, NY, USA: IBM Corp., 2023.
  • [7] MITRE Corporation, MITRE ATT&CK® Framework: Ransomware Techniques, 2022.
  • [8] CISA, Ransomware Guide. Cybersecurity and Infrastructure Security Agency, U.S. DHS, 2021.
  • [9] J. S. Ferguson and L. B. Anderson, “DarkSide ransomware and critical infrastructure attacks,” Journal of Cyber Policy, vol. 6, no. 3, pp. 315–332, 2021.
  • [10] J. Young and M. Yung, “Cryptovirology: Extortion-based security threats and countermeasures,” in Proc. IEEE Symp. Security and Privacy, 1996, pp. 129–140.
  • [11] ENISA, ENISA Threat Landscape for Ransomware Attacks. European Union Agency for Cybersecurity, 2021.
  • [12] Y. Zhao, W. Zhang, and X. Chen, “BlackCat (ALPHV): A cross-platform ransomware threat analysis,” in Proc. ACM CCS Workshop on Malware, 2023, pp. 45–56.
  • [13] S. Morgan, “Ransomware damages predicted to reach $20 billion by 2021,” Cybersecurity Ventures, 2020.
  • [14] J. Smith, R. A. Brown, and M. C. Jones, “Supply-chain ransomware attacks: The Kaseya VSA case study,” IEEE Security & Privacy, vol. 19, no. 5, pp. 78–85, 2021.
  • [15] A. Andronio, S. Zanero, and F. Maggi, “HelDroid: Dissecting and detecting mobile ransomware,” in Proc. RAID, 2015, pp. 382–404.
  • [16] R. Patel and A. Singh, “AI-based ransomware detection using behavioral and network features,” Computers & Security, vol. 110, 2022.
  • [17] L. Wu, Y. Zhang, and H. Li, “LockBit ransomware: Attack analysis and defense strategies,” IEEE Access, vol. 10,
  • pp. 112345–112358, 2022.
  • [18] A. Reed and T. Foster, “Critical infrastructure under ransomware siege: Lessons from Colonial Pipeline,” Journal of Cyber Policy, vol. 7, pp. 1–18, 2022.
  • [19] Symantec Threat Intelligence, Ransomware Evolution and Mitigation Strategies, White Paper, 2020.
  • [20] T. K. Das, A. K. Singh, and X. Zhao, “Ransomware-as-a-Service (RaaS): A cybercrime business model,” Future Generation Computer Systems, vol. 125, pp. 1–14, 2021.
  • [21] M. Conti, A. Gangwal, and S. Ruj, “On the economic significance of ransomware campaigns,” IEEE Security & Privacy, vol. 19, no. 4, pp. 64–72, 2021.
  • [22] H. S. Galal, Y. B. Zhan, and S. Wang, “Machine learning approaches for ransomware detection: A survey,” Electronics, vol. 10, Art. no. 1818, 2021.
  • [23] S. Sharmeen, M. H. Rahman, and A. H. Lal, “Malware and ransomware detection using deep learning techniques,” Journal of Information Security and Applications, vol. 63, 2022.
  • [24] A. Homayoun, M. D. R. Parsa, and H. K. A. Kharrazi, “Behavior-based ransomware detection using system-call analysis,” Computers & Security, vol. 111, 2022.
  • [25] P. Scaife, H. Carter, and R. Traynor, “Cryptolock (and drop it): Stopping ransomware attacks on user data,” in Proc. IEEE Symp. Security and Privacy, 2016, pp. 303–320.
  • [26] A. K. Sood and R. J. Enbody, “Crimeware-as-a-Service—A survey of commoditized cybercrime services,” Int. J. Critical Infrastructure Protection, vol. 6, no. 1, pp. 28–38, 2013.
  • [27] L. Trinetti, A. Andriani, and F. Martinelli, “Ransomware payments in the Bitcoin ecosystem,” IEEE Security & Privacy, vol. 20, no. 3, pp. 52–60, 2022.
  • [28] A. Roy, S. K. Singh, and S. Sharma, “Healthcare ransomware attacks: Analysis and mitigation strategies,” Health Informatics Journal, vol. 28, 2022.
  • [29] ENISA, ENISA Threat Landscape 2022 – Ransomware. European Union Agency for Cybersecurity, 2022.
  • [30] M. M. Al-rimy and S. S. A. Al-rimy, “Ransomware threat success factors, taxonomy, and countermeasures: A survey and research directions,” Computers & Security, vol. 74, pp. 144–166, 2018.
  • [31] M. Alzahrani and I. Traore, “Ransomware detection using anomaly-based behavior analysis,” IEEE Access, vol. 9, pp. 123456–123469, 2021.
  • [32] A. Kante and R. K. Kante, “AI-accelerated malware and ransomware detection in cloud environments,” Journal of Cloud Computing, vol. 12, 2023.
  • [33] S. Sabahi and A. Movaghar, “Automated incident response systems for ransomware containment,” IEEE Trans. Dependable and Secure Computing, vol. 20, no. 4, pp. 2871–2884, 2023.
  • [34] Q. Conti, T. Zhang, and J. Zhao, “Blockchain-based data integrity mechanisms against ransomware,” IEEE Communications Surveys & Tutorials, vol. 24, no. 3, pp. 1802–1824, 2022.
  • [35] R. Meffert and J. S. Smith, “WannaCry ransomware: Impact analysis and mitigation lessons,” Journal of Cybersecurity, vol. 7, 2021.
  • [36] T. Khodadadi, A. R. Ghaemi, and H. K. T. Khodadadi, “Ryuk ransomware attack analysis and enterprise defense strategies,” IEEE Trans. Information Forensics and Security, vol. 16, pp. 4552–4565, 2021.
  • [37] T. Akram and R. A. Khan, “Linux-targeted ransomware: Threat analysis and mitigation,” IEEE Access, vol. 11, pp. 45678–45692, 2023.
  • [38] J. Pavur and J. Martin, “REvil ransomware and supply-chain vulnerabilities,” in Proc. ACM CCS, 2021, pp. 1789–1802.
  • [39] R. Behl and J. Behl, “Cyber risk, ransomware, and cyber insurance,” Journal of Risk Research, vol. 25, no. 6, pp. 751–770, 2022.
  • [40] C. Maurer and M. Smith, “AI-powered threat intelligence for ransomware prediction,” IEEE Security & Privacy, vol. 22, no. 2, pp. 34–43, 2024.
  • [41] NIST, Cybersecurity Framework for Improving Critical Infrastructure Security. National Institute of Standards and Technology, 2018.
  • [42] S. Ullah, M. A. Khan, and K. K. Shah, “Human factors in ransomware attacks: Awareness, behavior, and mitigation,” Computers & Security, vol. 121, 2023.
  • [43] A. Kshetri and J. Voas, “Ransomware and cyber extortion: Business and policy implications,” Computer, vol. 54, no. 8, pp. 38–46, 2021.
  • [44] A. Ahmed and M. K. Ali, “Zero Trust security model for ransomware resilience,” IEEE Access, vol. 10, pp. 98765–98780, 2022.
  • [45] FBI IC3, Internet Crime Report 2022. Federal Bureau of Investigation, 2023.
  • [46] M. Shafiq, Z. Tariq, and Y. S. Malik, “Ransomware detection using hybrid deep learning models,” Future Internet, vol. 15, 2023.
  • [47] D. Berrueta, M. D. and E. I. E., “LockBit ransomware: Technical analysis and evolution,” Computers & Security, vol. 121, 2023.
  • [48] A. D. Lashkari and M. K. Lashkari, “Phishing-based ransomware delivery: Detection and prevention,” IEEE Access, vol. 9, pp. 134921–134934, 2021.
  • [49] R. Scandariato and J. S. Smith, “Security-by-design for ransomware-resistant systems,” IEEE Software, vol. 39, no. 4, pp. 72–79, 2022.
  • [50] M. Loukas, T. V. and D. G., “Cybersecurity regulation and ransomware governance,” Journal of Cyber Policy, vol. 8, pp. 1–19, 2023.
  • [51] ISO/IEC, ISO/IEC 27001: Information Security Management Systems. International Organization for Standardization, 2013.
  • [52] D. P. Faria and R. State, “Future ransomware trends: AI, automation, and cyber warfare,” IEEE Security & Privacy, vol. 22, no. 1, pp. 22–31, 2024.
  • [53] Chainalysis, Crypto Crime Report: Ransomware Payments. Chainalysis Inc., 2022.
  • [54] A. Ozcelik and H. P. Ozcelik, “Adversarial machine learning attacks against ransomware detectors,” Computers & Security, vol. 118, 2022.
  • [55] M. Alenezi and A. K. Bashir, “Cyber insurance and ransomware risk modeling,” IEEE Access, vol. 10, pp. 119876–119889, 2022.
  • [56] T. Allodi, C. T., and F. M. L., “Economic factors of ransomware payments,” in Proc. ACM CCS, 2018, pp. 531–548.
  • [57] P. K. Sharma and J. H. Park, “Blockchain-enabled cybersecurity frameworks for ransomware prevention,” Future Generation Computer Systems, vol. 128, pp. 326–338, 2022.
  • [58] Kaspersky Lab, Ransomware Threat Landscape 2023. Kaspersky Securelist, 2023.
  • [59] S. Ganesan and R. Nandakumar, “Ransomware resilience through cyber hygiene and policy enforcement,” IEEE Access, vol. 11, pp. 99871–99885, 2023.
  • [60] J. Liu, Y. Chen, and X. Huang, “AI-driven predictive analytics for ransomware defense,” Knowledge-Based Systems, vol. 275, 2024.