{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,1,19]],"date-time":"2026-01-19T05:16:57Z","timestamp":1768799817651,"version":"3.49.0"},"reference-count":46,"publisher":"Institute of Electrical and Electronics Engineers (IEEE)","issue":"2","license":[{"start":{"date-parts":[[2025,3,1]],"date-time":"2025-03-01T00:00:00Z","timestamp":1740787200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/IEEE.html"},{"start":{"date-parts":[[2025,3,1]],"date-time":"2025-03-01T00:00:00Z","timestamp":1740787200000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2025,3,1]],"date-time":"2025-03-01T00:00:00Z","timestamp":1740787200000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"funder":[{"DOI":"10.13039\/501100001809","name":"National Natural Science Foundation of China","doi-asserted-by":"publisher","award":["62372129"],"award-info":[{"award-number":["62372129"]}],"id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100001809","name":"National Natural Science Foundation of China","doi-asserted-by":"publisher","award":["U20B2046"],"award-info":[{"award-number":["U20B2046"]}],"id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"publisher"}]},{"name":"National Key Research and Development Program of China","award":["2021YFB2012402"],"award-info":[{"award-number":["2021YFB2012402"]}]},{"name":"Guangdong Province Universities and Colleges Pearl River Schoalar Funded Scheme"},{"name":"Guangdong Higher Education Innovation Group","award":["2020KCXTD007"],"award-info":[{"award-number":["2020KCXTD007"]}]},{"name":"Guangzhou Higher Education Innovation Group","award":["202032854"],"award-info":[{"award-number":["202032854"]}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IEEE Trans. Dependable and Secure Comput."],"published-print":{"date-parts":[[2025,3]]},"DOI":"10.1109\/tdsc.2024.3451129","type":"journal-article","created":{"date-parts":[[2024,9,4]],"date-time":"2024-09-04T18:24:20Z","timestamp":1725474260000},"page":"1686-1702","source":"Crossref","is-referenced-by-count":3,"title":["An Attack Exploiting Cyber-Arm Industry"],"prefix":"10.1109","volume":"22","author":[{"given":"Jie","family":"Gan","sequence":"first","affiliation":[{"name":"ADLab, Venustech, Beijing, China"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-8674-6716","authenticated-orcid":false,"given":"Chaochao","family":"Luo","sequence":"additional","affiliation":[{"name":"ADLab, Venustech, Beijing, China"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-3071-8350","authenticated-orcid":false,"given":"Wei","family":"Shi","sequence":"additional","affiliation":[{"name":"School of Information Technology, Carleton University, Ottawa, ON, Canada"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-0246-0778","authenticated-orcid":false,"given":"Yuan","family":"Liu","sequence":"additional","affiliation":[{"name":"Cyberspace Institute of Advanced Technology, Guangzhou University, Guangzhou, China"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-4238-3295","authenticated-orcid":false,"given":"Ximeng","family":"Liu","sequence":"additional","affiliation":[{"name":"College of Mathematics and Computer Science, Fuzhou University, Fuzhou, Fujian, China"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-9409-5359","authenticated-orcid":false,"given":"Zhihong","family":"Tian","sequence":"additional","affiliation":[{"name":"Cyberspace Institute of Advanced Technology, Guangzhou University, Guangzhou, China"}]}],"member":"263","reference":[{"key":"ref1","article-title":"Adjusting the lens on economic crime: Preparation brings opportunity back into focus","author":"Coopers","year":"2016","journal-title":"Glob. Econ. Crime Surv."},{"key":"ref3","article-title":"Highly evasive attacker leverages solarwinds supply chain to compromise multiple global victims with SUNBURST backdoor","year":"2020"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.7249\/rr610"},{"key":"ref5","first-page":"177","article-title":"Darknet and black market activities against the cybersecurity: A survey","volume-title":"Proc. Midwest Instruct. Comput. Symp.","author":"Akintaro"},{"key":"ref6","first-page":"1","article-title":"Measuring cybercrime as a service (CaaS) offerings in a cybercrime forum","volume-title":"Proc. Workshop Econ. Inf. Secur.","author":"Akyazi"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.3390\/app12125939"},{"issue":"3","key":"ref8","first-page":"71","article-title":"Software vulnerability markets: Discoverers and buyers","volume":"8","author":"Algarni","year":"2014","journal-title":"Int. J. Comput. Inf. Sci. Eng."},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.3390\/jcp2040039"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1109\/COMST.2019.2891891"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.5555\/3241189.3241275"},{"key":"ref12","article-title":"Measuring pay-per-install: The commoditization of malware distribution","volume-title":"Proc. USENIX Secur. Symp.","author":"Caballero"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1049\/cit2.12026"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1145\/3530812"},{"key":"ref15","article-title":"Overview of China\u2019s internet network security situation in 2017","year":"2018"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.1109\/COMST.2016.2548426"},{"key":"ref17","first-page":"2","article-title":"Modeling botnet propagation using time zones","volume-title":"Proc. Netw. Distrib. Syst. Secur. Symp.","author":"Dagon"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1109\/TIFS.2019.2898817"},{"key":"ref19","doi-asserted-by":"publisher","DOI":"10.1109\/TCYB.2015.2424425"},{"key":"ref20","doi-asserted-by":"publisher","DOI":"10.1007\/978-0-387-34749-3_34"},{"key":"ref21","doi-asserted-by":"publisher","DOI":"10.1145\/2382196.2382283"},{"key":"ref22","doi-asserted-by":"publisher","DOI":"10.1016\/s1568-4997(08)x0004-6"},{"key":"ref23","article-title":"How hackers recruit new talent","author":"Holland","year":"2016"},{"issue":"4","key":"ref24","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1145\/3199674","article-title":"Systematically understanding the cyber attack business: A survey","volume":"51","author":"Huang","year":"2018","journal-title":"ACM Comput. Surv."},{"key":"ref25","article-title":"Web session hijacking defense technique using user information","volume":"12","author":"Hwang","year":"2022","journal-title":"Hum.-Centric Comput. Inf. Sci."},{"key":"ref26","doi-asserted-by":"publisher","DOI":"10.1016\/j.srfe.2015.10.001"},{"key":"ref27","doi-asserted-by":"publisher","DOI":"10.1016\/j.procs.2017.12.202"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.1109\/ICCCN.2004.1401716"},{"key":"ref29","doi-asserted-by":"publisher","DOI":"10.1007\/3-540-68697-5_9"},{"key":"ref30","doi-asserted-by":"publisher","DOI":"10.1149\/10701.7153ecst"},{"key":"ref31","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2011.24"},{"issue":"1","key":"ref32","first-page":"359","article-title":"Pre-authorization and post-authorization techniques for detecting and preventing the session hijacking","volume":"14","author":"Vishnuvardhanand","year":"2021","journal-title":"Int. J. Future Gener. Commun. Netw."},{"key":"ref33","doi-asserted-by":"publisher","DOI":"10.1016\/j.compeleceng.2022.107716"},{"key":"ref34","first-page":"716","article-title":"The legitimate vulnerability market: The secretive world of 0-day exploit sales","volume-title":"Proc. 6th Annu. Workshop Econ. Inf. Secur.","author":"Miller"},{"issue":"2","key":"ref35","first-page":"1","article-title":"Hackerpocalypse: A cybercrime revelation","volume":"3","author":"Morgan","year":"2016","journal-title":"Cybersecurity Ventures"},{"key":"ref36","doi-asserted-by":"publisher","DOI":"10.1093\/oxfordjournals.oep.a040951"},{"key":"ref37","doi-asserted-by":"publisher","DOI":"10.1103\/PhysRevLett.86.3200"},{"key":"ref38","article-title":"Managing information security risk: Organization, mission, and information system view","author":"Radack","year":"2011"},{"key":"ref39","doi-asserted-by":"publisher","DOI":"10.3390\/app12126042"},{"key":"ref40","doi-asserted-by":"publisher","DOI":"10.1016\/j.ijcip.2013.01.002"},{"key":"ref41","article-title":"The underground economy of the pay-per-install (PPI) business","author":"Stevens","year":"2009"},{"key":"ref42","doi-asserted-by":"publisher","DOI":"10.1109\/TII.2019.2938778"},{"issue":"4","key":"ref43","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1145\/3448291","article-title":"Application layer denial-of-service attacks and defense mechanisms: A survey","volume":"54","author":"Tripathi","year":"2021","journal-title":"ACM Comput. Surv."},{"key":"ref44","first-page":"1009","article-title":"Plug and prey? Measuring the commoditization of cybercrime via online anonymous markets","volume-title":"Proc. 27th USENIX Secur. Symp.","author":"Van Wegberg"},{"key":"ref45","doi-asserted-by":"publisher","DOI":"10.1145\/3419394.3423636"},{"key":"ref46","doi-asserted-by":"publisher","DOI":"10.1109\/TIFS.2016.2581305"},{"key":"ref47","doi-asserted-by":"publisher","DOI":"10.1007\/s11277-021-09209-1"}],"container-title":["IEEE Transactions on Dependable and Secure Computing"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx8\/8858\/10925471\/10664640.pdf?arnumber=10664640","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,3,17]],"date-time":"2025-03-17T21:18:59Z","timestamp":1742246339000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/10664640\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025,3]]},"references-count":46,"journal-issue":{"issue":"2"},"URL":"https:\/\/doi.org\/10.1109\/tdsc.2024.3451129","relation":{},"ISSN":["1545-5971","1941-0018","2160-9209"],"issn-type":[{"value":"1545-5971","type":"print"},{"value":"1941-0018","type":"electronic"},{"value":"2160-9209","type":"electronic"}],"subject":[],"published":{"date-parts":[[2025,3]]}}}