Authors: Asmaa Alsharif
Mentors: Sayeed Sajal
Insitution: Utah Valley University
Ransomware is malicious software which restricts users from accessing their computer and personal data through encryption. Ransomware attacks target a variety of victims including individuals, organizations, businesses, and governments. Attackers take control of this sensitive data and hold it hostage until a ransom is paid. Whether or not ransom is paid, the attackers’ damage can be irreparable. It includes but is not limited to exposing personal information, identity theft, blackmail, permanent deletion or corruption of valuable data, and Distributed Denial-of-service (DDos). Moreover, the financial implications of ransomware attacks are substantial. Victims face not only the direct costs of ransom payments, but also the expenses associated with system restoration and the potential fines for data protection violations. Furthermore, an ethical dilemma emerges from the response to extortion, as victims must grapple with the moral implications of potentially supporting criminal activities by paying ransoms to recover their data. This raises questions about the broader responsibility of stakeholders in cybersecurity and their duty to protect data privacy. The first ransomware attack emerged in 1989 and since then, ransomware attackers have persisted as a cybersecurity threat, striking at the core of data privacy. This paper delves into the multifaceted impact of ransomware incidents on data security, current ransomware techniques and strategies, and the ethical dilemmas they raise.
Because ransomware attackers are constantly evolving their methods, it is important to routinely review the current literature to fully understand the tactics and techniques used by these cybercriminals. This research paper will review, analyze, and synthesize the existing literature about ransomware. It is crucial for individuals and organizations to be proactive, understand the nature of the threat, and take precautions to protect themselves and their data. This study encourages further research and discourse on the multifaceted impact of ransomware attacks on data privacy and the pursuit for effective countermeasures.