NotPetya: Cyber Attack Prevention through Awareness via Gamification

2018 International Conference on Smart Computing and Electronic Enterprise (ICSCEE) Pub Date : 2018-07-11 DOI:10.1109/ICSCEE.2018.8538431

Reyner Aranta Lika, D. Murugiah, S. Brohi, D. Ramasamy

{"title":"NotPetya: Cyber Attack Prevention through Awareness via Gamification","authors":"Reyner Aranta Lika, D. Murugiah, S. Brohi, D. Ramasamy","doi":"10.1109/ICSCEE.2018.8538431","DOIUrl":null,"url":null,"abstract":"NotPetya, when released in 2017, was believed to be ransomware. NotPetya injects malicious codes in the computer and then attempts to gain administrator access. Following that, it infects other computers in the network. NotPetya uses the EternalBlue Server Message Block (SMB) exploit to conduct the attacks. The hard drives get encrypted, and when the computer is booted, the ransom note is displayed. NotPetya does not provide enough information for a decryption key to be produced, making it a malware. Businesses across industries have been affected without having an opportunity for system recovery. While definite solutions are lacking, vaccines exist, where, the presence of a local file, blocks the NotPetya execution. Activating the vaccine can be tedious and cumbersome for average computer users. Hence, our solution is intended to educate them in an interactive manner. Users will be more susceptible towards the vaccination while learning about security habits that need to be practiced. From this, average computer users can walk away with the knowledge that can protect them from future attacks.","PeriodicalId":265737,"journal":{"name":"2018 International Conference on Smart Computing and Electronic Enterprise (ICSCEE)","volume":"26 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2018-07-11","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"10","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2018 International Conference on Smart Computing and Electronic Enterprise (ICSCEE)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICSCEE.2018.8538431","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 10

Abstract

NotPetya, when released in 2017, was believed to be ransomware. NotPetya injects malicious codes in the computer and then attempts to gain administrator access. Following that, it infects other computers in the network. NotPetya uses the EternalBlue Server Message Block (SMB) exploit to conduct the attacks. The hard drives get encrypted, and when the computer is booted, the ransom note is displayed. NotPetya does not provide enough information for a decryption key to be produced, making it a malware. Businesses across industries have been affected without having an opportunity for system recovery. While definite solutions are lacking, vaccines exist, where, the presence of a local file, blocks the NotPetya execution. Activating the vaccine can be tedious and cumbersome for average computer users. Hence, our solution is intended to educate them in an interactive manner. Users will be more susceptible towards the vaccination while learning about security habits that need to be practiced. From this, average computer users can walk away with the knowledge that can protect them from future attacks.

查看原文本刊更多论文

NotPetya:通过游戏化意识来预防网络攻击

2017年发布的NotPetya被认为是勒索软件。NotPetya在计算机中注入恶意代码，然后试图获得管理员访问权限。然后，它会感染网络中的其他计算机。NotPetya利用SMB (EternalBlue Server Message Block)漏洞进行攻击。硬盘被加密，当电脑启动时，就会显示勒索信。NotPetya没有提供足够的信息来生成解密密钥，使其成为恶意软件。各行各业的企业都受到了影响，没有机会进行系统恢复。虽然缺乏明确的解决方案，但存在疫苗，其中存在本地文件，可以阻止NotPetya的执行。对于普通计算机用户来说，激活疫苗可能是冗长而繁琐的。因此，我们的解决方案旨在以互动的方式教育他们。用户将更容易接种疫苗，同时了解需要实践的安全习惯。从这里，普通计算机用户可以带着可以保护他们免受未来攻击的知识离开。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2018 International Conference on Smart Computing and Electronic Enterprise (ICSCEE)

自引率

0.00%

发文量