{"title":"保护物联网:勒索软件攻击、检测、对策和未来前景的全面回顾","authors":"Peizhi Yan, Tala Talaei Khoei","doi":"10.1016/j.fraope.2025.100256","DOIUrl":null,"url":null,"abstract":"<div><div>Ransomware attacks present a critical and persistent threat by denying access to data until a ransom is paid. Although existing research on IoT ransomware often concentrates on specific attack types or industry sectors, it frequently overlooks newly emerging threats and lacks holistic defense frameworks applicable across diverse IoT ecosystems. To bridge these gaps, this paper provides a comprehensive analysis of the evolving ransomware landscape targeting IoT devices. We systematically review and categorize detection technologies—ranging from signature-based methods to cutting-edge AI-driven solutions—and assess their effectiveness in mitigating these threats. Additionally, we propose a multi-layered defensive strategy integrating technological, legal, and policy measures to address the complexities of ransomware in IoT settings. Looking ahead, our study highlights potential research directions such as advancing real-time detection, leveraging blockchain for enhanced security and fostering cross-sector collaboration to bolster collective threat intelligence. By emphasizing the importance of a unified approach that involves researchers, industry professionals, and policymakers, we underline the critical steps necessary to fortify IoT infrastructures against the ever-evolving ransomware threat.</div></div>","PeriodicalId":100554,"journal":{"name":"Franklin Open","volume":"11 ","pages":"Article 100256"},"PeriodicalIF":0.0000,"publicationDate":"2025-03-31","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Securing the internet of things: A comprehensive review of ransomware attacks, detection, countermeasures, and future prospects\",\"authors\":\"Peizhi Yan, Tala Talaei Khoei\",\"doi\":\"10.1016/j.fraope.2025.100256\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"<div><div>Ransomware attacks present a critical and persistent threat by denying access to data until a ransom is paid. Although existing research on IoT ransomware often concentrates on specific attack types or industry sectors, it frequently overlooks newly emerging threats and lacks holistic defense frameworks applicable across diverse IoT ecosystems. To bridge these gaps, this paper provides a comprehensive analysis of the evolving ransomware landscape targeting IoT devices. We systematically review and categorize detection technologies—ranging from signature-based methods to cutting-edge AI-driven solutions—and assess their effectiveness in mitigating these threats. Additionally, we propose a multi-layered defensive strategy integrating technological, legal, and policy measures to address the complexities of ransomware in IoT settings. Looking ahead, our study highlights potential research directions such as advancing real-time detection, leveraging blockchain for enhanced security and fostering cross-sector collaboration to bolster collective threat intelligence. By emphasizing the importance of a unified approach that involves researchers, industry professionals, and policymakers, we underline the critical steps necessary to fortify IoT infrastructures against the ever-evolving ransomware threat.</div></div>\",\"PeriodicalId\":100554,\"journal\":{\"name\":\"Franklin Open\",\"volume\":\"11 \",\"pages\":\"Article 100256\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2025-03-31\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Franklin Open\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://www.sciencedirect.com/science/article/pii/S2773186325000465\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Franklin Open","FirstCategoryId":"1085","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S2773186325000465","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Securing the internet of things: A comprehensive review of ransomware attacks, detection, countermeasures, and future prospects
Ransomware attacks present a critical and persistent threat by denying access to data until a ransom is paid. Although existing research on IoT ransomware often concentrates on specific attack types or industry sectors, it frequently overlooks newly emerging threats and lacks holistic defense frameworks applicable across diverse IoT ecosystems. To bridge these gaps, this paper provides a comprehensive analysis of the evolving ransomware landscape targeting IoT devices. We systematically review and categorize detection technologies—ranging from signature-based methods to cutting-edge AI-driven solutions—and assess their effectiveness in mitigating these threats. Additionally, we propose a multi-layered defensive strategy integrating technological, legal, and policy measures to address the complexities of ransomware in IoT settings. Looking ahead, our study highlights potential research directions such as advancing real-time detection, leveraging blockchain for enhanced security and fostering cross-sector collaboration to bolster collective threat intelligence. By emphasizing the importance of a unified approach that involves researchers, industry professionals, and policymakers, we underline the critical steps necessary to fortify IoT infrastructures against the ever-evolving ransomware threat.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
