An empirical study of ransomware attacks on organizations: an assessment of severity and salient factors affecting vulnerability. Issue 1 (28th December 2020)
- Record Type:
- Journal Article
- Title:
- An empirical study of ransomware attacks on organizations: an assessment of severity and salient factors affecting vulnerability. Issue 1 (28th December 2020)
- Main Title:
- An empirical study of ransomware attacks on organizations: an assessment of severity and salient factors affecting vulnerability
- Authors:
- Yuryna Connolly, Lena
Wall, David S
Lang, Michael
Oddson, Bruce - Abstract:
- Abstract: This study looks at the experiences of organizations that have fallen victim to ransomware attacks. Using quantitative and qualitative data of 55 ransomware cases drawn from 50 organizations in the UK and North America, we assessed the severity of the crypto-ransomware attacks experienced and looked at various factors to test if they had an influence on the degree of severity. An organization's size was found to have no effect on the degree of severity of the attack, but the sector was found to be relevant, with private sector organizations feeling the pain much more severely than those in the public sector. Moreover, an organization's security posture influences the degree of severity of a ransomware attack. We did not find that the attack target (i.e. human or machine) or the crypto-ransomware propagation class had any significant bearing on the severity of the outcome, but attacks that were purposefully directed at specific victims wreaked more damage than opportunistic ones.
- Is Part Of:
- Journal of cybersecurity. Volume 6:Issue 1(2020)
- Journal:
- Journal of cybersecurity
- Issue:
- Volume 6:Issue 1(2020)
- Issue Display:
- Volume 6, Issue 1 (2020)
- Year:
- 2020
- Volume:
- 6
- Issue:
- 1
- Issue Sort Value:
- 2020-0006-0001-0000
- Page Start:
- Page End:
- Publication Date:
- 2020-12-28
- Subjects:
- ransomware -- cybercrime -- attack severity -- vulnerability factors -- victimization -- impact assessment
Computer security -- Periodicals
Computer networks -- Security measures -- Periodicals
005.805 - Journal URLs:
- http://cybersecurity.oxfordjournals.org/ ↗
http://www.oxfordjournals.org/ ↗ - DOI:
- 10.1093/cybsec/tyaa023 ↗
- Languages:
- English
- ISSNs:
- 2057-2093
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 15255.xml