{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,10,25]],"date-time":"2025-10-25T14:23:19Z","timestamp":1761402199162,"version":"3.40.3"},"publisher-location":"Cham","reference-count":51,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783030916244"},{"type":"electronic","value":"9783030916251"}],"license":[{"start":{"date-parts":[[2021,1,1]],"date-time":"2021-01-01T00:00:00Z","timestamp":1609459200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springer.com\/tdm"},{"start":{"date-parts":[[2021,1,1]],"date-time":"2021-01-01T00:00:00Z","timestamp":1609459200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2021]]},"DOI":"10.1007\/978-3-030-91625-1_5","type":"book-chapter","created":{"date-parts":[[2021,11,13]],"date-time":"2021-11-13T00:03:08Z","timestamp":1636761788000},"page":"72-92","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":5,"title":["Industrialising Blackmail: Privacy Invasion Based IoT Ransomware"],"prefix":"10.1007","author":[{"ORCID":"https:\/\/orcid.org\/0000-0001-8766-822X","authenticated-orcid":false,"given":"Calvin","family":"Brierley","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-1830-1587","authenticated-orcid":false,"given":"Budi","family":"Arief","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-6073-0951","authenticated-orcid":false,"given":"David","family":"Barnes","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-6432-5328","authenticated-orcid":false,"given":"Julio","family":"Hernandez-Castro","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2021,11,13]]},"reference":[{"unstructured":"abcNEWS: Terrifying video of family\u2019s hacked ring camera system (2019). https:\/\/abcnews.go.com\/GMA\/News\/video\/terrifying-video-familys-hacked-ring-camera-system-67704081\/. Accessed June 2021","key":"5_CR1"},{"unstructured":"Antonakakis, M., et al.: Understanding the Mirai botnet. In: 26th USENIX Security Symposium (USENIX Security 2017), pp. 1093\u20131110 (2017)","key":"5_CR2"},{"issue":"2","key":"5_CR3","doi-asserted-by":"publisher","first-page":"99","DOI":"10.1109\/TMSCS.2015.2498605","volume":"1","author":"O Arias","year":"2015","unstructured":"Arias, O., Wurm, J., Hoang, K., Jin, Y.: Privacy and security in internet of things and wearable devices. IEEE Trans. Multi-Scale Comput. Syst. 1(2), 99\u2013109 (2015)","journal-title":"IEEE Trans. Multi-Scale Comput. Syst."},{"unstructured":"Balaban, M.: Voipong user\u2019s manual (2005). http:\/\/www.enderunix.org\/voipong\/manual\/. Accessed April 2021","key":"5_CR4"},{"unstructured":"Bitdefender: Security 2020 consumer threat landscape report (2021). https:\/\/www.bitdefender.com\/files\/News\/CaseStudies\/study\/395\/Bitdefender-2020-Consumer-Threat-Landscape-Report.pdf. Accessed July 2021","key":"5_CR5"},{"doi-asserted-by":"crossref","unstructured":"Brierley, C., Pont, J., Arief, B., Barnes, D.J., Hernandez-Castro, J.: PaperW8: an IoT bricking ransomware proof of concept. In: Proceedings of the 15th International Conference on Availability, Reliability and Security, pp. 1\u201310 (2020)","key":"5_CR6","DOI":"10.1145\/3407023.3407044"},{"key":"5_CR7","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"3","DOI":"10.1007\/978-3-030-70852-8_1","volume-title":"Secure IT Systems","author":"C Brierley","year":"2021","unstructured":"Brierley, C., Pont, J., Arief, B., Barnes, D.J., Hernandez-Castro, J.: Persistence in linux-based IoT malware. In: Asplund, M., Nadjm-Tehrani, S. (eds.) NordSec 2020. LNCS, vol. 12556, pp. 3\u201319. Springer, Cham (2021). https:\/\/doi.org\/10.1007\/978-3-030-70852-8_1"},{"unstructured":"@CDPROJEKTRED: Important update (2021). https:\/\/twitter.com\/CDPROJEKTRED\/status\/1359048125403590660. Accessed June 2021","key":"5_CR8"},{"doi-asserted-by":"crossref","unstructured":"Internet Crime Complaint Center: Internet crime report 2020 (2021). https:\/\/www.ic3.gov\/Media\/PDF\/AnnualReport\/2020_IC3Report.pdf. Accessed July 2021","key":"5_CR9","DOI":"10.1016\/S1361-3723(21)00038-5"},{"unstructured":"Chai, Z., Ghafari, A., Houmansadr, A.: On the importance of encrypted-SNI (ESNI) to censorship circumvention. In: 9th USENIX Workshop on Free and Open Communications on the Internet (FOCI 2019) (2019)","key":"5_CR10"},{"unstructured":"Let\u2019s Encrypt: Let\u2019s encrypt stats. https:\/\/letsencrypt.org\/stats\/. Accessed July 2021","key":"5_CR11"},{"unstructured":"EnderUNIX: Voipong (2011). https:\/\/github.com\/EnderUNIX\/VoIPong. Accessed July 2021","key":"5_CR12"},{"unstructured":"Fabian Br\u00e4unlein, L.F.: Smart Spies: Alexa and Google Home expose users to vishing and eavesdropping (2019). https:\/\/www.srlabs.de\/bites\/smart-spies. Accessed July 2021","key":"5_CR13"},{"doi-asserted-by":"crossref","unstructured":"Fielding, R., et al.: RFC2616: Hypertext transfer protocol-http\/1.1 (1999)","key":"5_CR14","DOI":"10.17487\/rfc2616"},{"unstructured":"Goodin, D.: CD projekt red does an about-face, says ransomware crooks are leaking data (2021). https:\/\/arstechnica.com\/gadgets\/2021\/06\/cd-projekt-red-says-its-data-is-likely-circulating-online-after-ransom-attack\/. Accessed June 2021","key":"5_CR15"},{"unstructured":"Google: Cloud computing services | Google Cloud. https:\/\/cloud.google.com\/. Accessed July 2021","key":"5_CR16"},{"unstructured":"Google: HTTP strict transport security. https:\/\/www.chromium.org\/hsts\/. Accessed July 2021","key":"5_CR17"},{"unstructured":"Google: HTTPS encryption on the web. https:\/\/transparencyreport.google.com\/https\/overview. Accessed July 2021","key":"5_CR18"},{"unstructured":"Google: Detect explicit content (safesearch) (2021). https:\/\/cloud.google.com\/vision\/docs\/detecting-safe-search. Accessed Aug 2021","key":"5_CR19"},{"unstructured":"Google: Detect faces (2021). https:\/\/cloud.google.com\/vision\/docs\/detecting-faces. Accessed Aug 2021","key":"5_CR20"},{"unstructured":"Google: Detect labels (2021). https:\/\/cloud.google.com\/vision\/docs\/labels. Accessed Aug 2021","key":"5_CR21"},{"unstructured":"Google: Geolocation API (2021). https:\/\/developers.google.com\/maps\/documentation\/geolocation\/overview. Accessed July 2021","key":"5_CR22"},{"unstructured":"Google: Method: speech.recognize (2021). https:\/\/cloud.google.com\/speech-to-text\/docs\/reference\/rest\/v1\/speech\/recognize. Accessed July 2021","key":"5_CR23"},{"unstructured":"Talos Intelligence Group: VPNFilter update - VPNFilter exploits endpoints, targets new devices (2018). https:\/\/blog.talosintelligence.com\/2018\/06\/vpnfilter-update.html. Accessed July 2021","key":"5_CR24"},{"unstructured":"The TCPDUMP Group: TCPDUMP\/LIBCAP public repository (2021). https:\/\/www.tcpdump.org\/. Accessed July 2021","key":"5_CR25"},{"unstructured":"Hron, M.: The fresh smell of ransomed coffee (2020). https:\/\/decoded.avast.io\/martinhron\/the-fresh-smell-of-ransomed-coffee\/. Accessed July 2021","key":"5_CR26"},{"unstructured":"IBM: Speech to text demo. https:\/\/speech-to-text-demo.ng.bluemix.net\/. Accessed July 2021","key":"5_CR27"},{"unstructured":"Ilascu, I.: Hacker used ransomware to lock victims in their IoT chastity belt (2021). https:\/\/www.bleepingcomputer.com\/news\/security\/hacker-used-ransomware-to-lock-victims-in-their-iot-chastity-belt\/. Accessed June 2021","key":"5_CR28"},{"issue":"17","key":"5_CR29","doi-asserted-by":"publisher","first-page":"4806","DOI":"10.3390\/s20174806","volume":"20","author":"N Kalbo","year":"2020","unstructured":"Kalbo, N., Mirsky, Y., Shabtai, A., Elovici, Y.: The security of IP-based video surveillance systems. Sensors 20(17), 4806 (2020)","journal-title":"Sensors"},{"key":"5_CR30","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"3","DOI":"10.1007\/978-3-319-20550-2_1","volume-title":"Detection of Intrusions and Malware, and Vulnerability Assessment","author":"A Kharraz","year":"2015","unstructured":"Kharraz, A., Robertson, W., Balzarotti, D., Bilge, L., Kirda, E.: Cutting the Gordian knot: a look under the hood of ransomware attacks. In: Almgren, M., Gulisano, V., Maggi, F. (eds.) DIMVA 2015. LNCS, vol. 9148, pp. 3\u201324. Springer, Cham (2015). https:\/\/doi.org\/10.1007\/978-3-319-20550-2_1"},{"unstructured":"Land, J.: Multiple netgear routers are vulnerable to arbitrary command injection (2016). https:\/\/www.kb.cert.org\/vuls\/id\/582384\/. Accessed July 2021","key":"5_CR31"},{"unstructured":"Marlinspike, M.: New tricks for defeating SSL in practice. Black Hat DC 2 (2009)","key":"5_CR32"},{"doi-asserted-by":"crossref","unstructured":"Mockapetris, P.: Domain names - concepts and facilities (1987). https:\/\/datatracker.ietf.org\/doc\/html\/rfc1034#section-5.3.2. Accessed July 2021","key":"5_CR33","DOI":"10.17487\/rfc1034"},{"issue":"5","key":"5_CR34","first-page":"1938","volume":"8","author":"S Mohurle","year":"2017","unstructured":"Mohurle, S., Patil, M.: A brief study of wannacry threat: ransomware attack 2017. Int. J. Adv. Res. Comput. Sci. 8(5), 1938\u20131940 (2017)","journal-title":"Int. J. Adv. Res. Comput. Sci."},{"unstructured":"Morais, R.: Deepspeech 0.9.3 (2020). https:\/\/github.com\/mozilla\/DeepSpeech\/releases\/tag\/v0.9.3. Accessed July 2021","key":"5_CR35"},{"unstructured":"Mozilla: Geolocate (2020). https:\/\/ichnaea.readthedocs.io\/en\/latest\/api\/geolocate.html. Accessed July 2021","key":"5_CR36"},{"unstructured":"NIST: CVE-2016-6277 detail (2017). https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2016-6277. Accessed July 2021","key":"5_CR37"},{"unstructured":"Orland, K.: CD projekt red source code reportedly sells for millions in dark web auction [updated] (2021). https:\/\/arstechnica.com\/gaming\/2021\/02\/cd-projekt-red-source-code-reportedly-sells-for-millions-in-dark-web-auction\/. Accessed June 2021","key":"5_CR38"},{"unstructured":"Palmer, D.: Hackers publish thousands of files after government agency refuses to pay ransom (2021). https:\/\/www.zdnet.com\/article\/hackers-publish-thousands-of-files-after-government-agency-refuses-to-pay-ransom\/. Accessed July 2021","key":"5_CR39"},{"unstructured":"Patton, C.: Good-bye ESNI, hello ECH! (2020). https:\/\/blog.cloudflare.com\/encrypted-client-hello\/. Accessed July 2021","key":"5_CR40"},{"unstructured":"SonicWall: Sonicwall cyber threat report (2021). https:\/\/www.sonicwall.com\/medialibrary\/en\/white-paper\/2021-cyber-threat-report.pdf. Accessed July 2021","key":"5_CR41"},{"doi-asserted-by":"crossref","unstructured":"Sun, K., Chen, C., Zhang, X.: \u201cAlexa, stop spying on me!\u201d speech privacy protection against voice assistants. In: Proceedings of the 18th Conference on Embedded Networked Sensor Systems, pp. 298\u2013311 (2020)","key":"5_CR42","DOI":"10.1145\/3384419.3430727"},{"doi-asserted-by":"crossref","unstructured":"Surbatovich, M., Aljuraidan, J., Bauer, L., Das, A., Jia, L.: Some recipes can do more than spoil your appetite: analyzing the security and privacy risks of IFTTT recipes. In: Proceedings of the 26th International Conference on World Wide Web, pp. 1501\u20131510 (2017)","key":"5_CR43","DOI":"10.1145\/3038912.3052709"},{"doi-asserted-by":"crossref","unstructured":"tacnetsol: CVE-2019-10999 (2019). https:\/\/github.com\/tacnetsol\/CVE-2019-10999. Accessed July 2021","key":"5_CR44","DOI":"10.5465\/AMBPP.2019.10999abstract"},{"unstructured":"Tidy, J.: Cyber criminals publish more than 4,000 stolen sepa files (2021). https:\/\/www.bbc.co.uk\/news\/uk-scotland-55757884. Accessed June 2021","key":"5_CR45"},{"unstructured":"Tor: Tor project | anonymity online. www.torproject.org\/. Accessed July 2021","key":"5_CR46"},{"unstructured":"TrendMicro: Exposed video streams: how hackers abuse surveillance cameras (2018). https:\/\/www.trendmicro.com\/vinfo\/us\/security\/news\/internet-of-things\/exposed-video-streams-how-hackers-abuse-surveillance-cameras. Accessed June 2021","key":"5_CR47"},{"unstructured":"TrendMicro: Over 200,000 mikrotik routers compromised in cryptojacking campaign (2018). https:\/\/www.trendmicro.com\/vinfo\/nl\/security\/news\/cybercrime-and-digital-threats\/over-200-000-mikrotik-routers-compromised-in-cryptojacking-campaign. Accessed July 2021","key":"5_CR48"},{"unstructured":"Whalen, S., Engle, S., Romeo, D.: An introduction to ARP spoofing. Node99 [Online Document] (2001). https:\/\/www.cavalcantetreinamentos.com.br\/blog\/material-sala-de-aula\/Seguranca em Redes\/Outros\/arp_spoofing_slides.pdf","key":"5_CR49"},{"unstructured":"Zhang, N., Mi, X., Feng, X., Wang, X., Tian, Y., Qian, F.: Understanding and mitigating the security risks of voice-controlled third-party skills on Amazon Alexa and Google Home. arXiv preprint arXiv:1805.01525 (2018)","key":"5_CR50"},{"doi-asserted-by":"crossref","unstructured":"Zhang, Y., et al.: A11 your PLCS belong to me: ICS ransomware is realistic. In: 2020 IEEE 19th International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom), pp. 502\u2013509. IEEE (2020)","key":"5_CR51","DOI":"10.1109\/TrustCom50675.2020.00074"}],"container-title":["Lecture Notes in Computer Science","Secure IT Systems"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-030-91625-1_5","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2023,1,15]],"date-time":"2023-01-15T03:27:13Z","timestamp":1673753233000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-030-91625-1_5"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2021]]},"ISBN":["9783030916244","9783030916251"],"references-count":51,"URL":"https:\/\/doi.org\/10.1007\/978-3-030-91625-1_5","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2021]]},"assertion":[{"value":"13 November 2021","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"NordSec","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Nordic Conference on Secure IT Systems","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2021","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"29 November 2021","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"30 November 2021","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"26","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"nordsec2021","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/events.tuni.fi\/nordsec2021\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Double-blind","order":1,"name":"type","label":"Type","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"EasyChair","order":2,"name":"conference_management_system","label":"Conference Management System","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"29","order":3,"name":"number_of_submissions_sent_for_review","label":"Number of Submissions Sent for Review","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"11","order":4,"name":"number_of_full_papers_accepted","label":"Number of Full Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"0","order":5,"name":"number_of_short_papers_accepted","label":"Number of Short Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"38% - The value is computed by the equation \"Number of Full Papers Accepted \/ Number of Submissions Sent for Review * 100\" and then rounded to a whole number.","order":6,"name":"acceptance_rate_of_full_papers","label":"Acceptance Rate of Full Papers","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"3.83","order":7,"name":"average_number_of_reviews_per_paper","label":"Average Number of Reviews per Paper","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"2.47","order":8,"name":"average_number_of_papers_per_reviewer","label":"Average Number of Papers per Reviewer","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"Yes","order":9,"name":"external_reviewers_involved","label":"External Reviewers Involved","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}}]}}