{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,2]],"date-time":"2026-06-02T20:59:52Z","timestamp":1780433992899,"version":"3.54.1"},"publisher-location":"New York, NY, USA","reference-count":41,"publisher":"ACM","license":[{"start":{"date-parts":[[2024,6,5]],"date-time":"2024-06-05T00:00:00Z","timestamp":1717545600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by-nc-nd\/4.0\/"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2024,6,5]]},"DOI":"10.1145\/3655693.3661321","type":"proceedings-article","created":{"date-parts":[[2024,6,4]],"date-time":"2024-06-04T18:22:10Z","timestamp":1717525330000},"page":"210-216","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":5,"title":["A Threat-Led Approach to Mitigating Ransomware Attacks: Insights from a Comprehensive Analysis of the Ransomware Ecosystem"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0000-0003-4703-6310","authenticated-orcid":false,"given":"Alexander","family":"Lawall","sequence":"first","affiliation":[{"name":"IU International University of Applied Sciences, Germany"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0009-0002-8027-7343","authenticated-orcid":false,"given":"Petra","family":"Beenken","sequence":"additional","affiliation":[{"name":"IU International University of Applied Sciences, Germany"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"320","published-online":{"date-parts":[[2024,6,5]]},"reference":[{"key":"e_1_3_2_1_1_1","unstructured":"2023. MITRE ATT&CK\u2122: Adversarial Tactics Techniques and Common Knowledge. https:\/\/attack.mitre.org\/"},{"key":"e_1_3_2_1_2_1","volume-title":"Literature Review on Cyber Attacks Detection and Prevention Schemes. In 2021 International Conference on Intelligent Technology, System and Service for Internet of Everything (ITSS-IoE). IEEE, 1\u20136.","author":"Al-Fuhaidi Belal","year":"2021","unstructured":"Belal Al-Fuhaidi, Wedad Al-Sorori, Naseebah Maqtary, Abdullah Al-Hashedi, and Sadik Al-Taweel. 2021. Literature Review on Cyber Attacks Detection and Prevention Schemes. In 2021 International Conference on Intelligent Technology, System and Service for Internet of Everything (ITSS-IoE). IEEE, 1\u20136."},{"key":"e_1_3_2_1_3_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2018.01.001"},{"key":"e_1_3_2_1_4_1","volume-title":"Security Engineering - A Guide to Building Dependable Distributed Systems","author":"Anderson Ross","unstructured":"Ross Anderson. 2020. Security Engineering - A Guide to Building Dependable Distributed Systems. John Wiley & Sons, New York."},{"key":"e_1_3_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1109\/CR.2018.8626868"},{"key":"e_1_3_2_1_6_1","first-page":"865","article-title":"Cyber kill chain-based taxonomy of advanced persistent threat actors: Analogy of tactics, techniques, and procedures","volume":"15","author":"Bahrami Pooneh\u00a0Nikkhah","year":"2019","unstructured":"Pooneh\u00a0Nikkhah Bahrami, Ali Dehghantanha, Tooska Dargahi, Reza\u00a0M Parizi, Kim-Kwang\u00a0Raymond Choo, and Hamid\u00a0HS Javadi. 2019. Cyber kill chain-based taxonomy of advanced persistent threat actors: Analogy of tactics, techniques, and procedures. Journal of information processing systems 15, 4 (2019), 865\u2013889.","journal-title":"Journal of information processing systems"},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-51974-2_14"},{"key":"e_1_3_2_1_8_1","doi-asserted-by":"publisher","DOI":"10.1145\/2808128.2808133"},{"key":"e_1_3_2_1_9_1","first-page":"1","article-title":"Computer security incident handling guide","volume":"800","author":"Cichonski Paul","year":"2012","unstructured":"Paul Cichonski, Tom Millar, Tim Grance, Karen Scarfone, 2012. Computer security incident handling guide. NIST Special Publication 800, 61 (2012), 1\u2013147.","journal-title":"NIST Special Publication"},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1109\/MC.2013.448"},{"key":"e_1_3_2_1_11_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-12942-2_20"},{"key":"e_1_3_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.1002\/sec.58"},{"key":"e_1_3_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICCCN.2016.7568578"},{"key":"e_1_3_2_1_14_1","doi-asserted-by":"publisher","unstructured":"Bill Fisher Murugiah Souppaya William Barker and Karen Scarfone. 2022. Ransomware Risk Management: A Cybersecurity Framework Profile. https:\/\/doi.org\/10.6028\/NIST.IR.8374","DOI":"10.6028\/NIST.IR.8374"},{"key":"e_1_3_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.1109\/CHILECON.2017.8229528"},{"key":"e_1_3_2_1_16_1","volume-title":"Analyzing the Effect of Ransomware Attacks on Different Industries. In 2017 International Conference on Computational Science and Computational Intelligence (CSCI). IEEE, 121\u2013126","author":"Gibson Christopher\u00a0Patrick","year":"2017","unstructured":"Christopher\u00a0Patrick Gibson and Shankar\u00a0Madhab Banik. 2017. Analyzing the Effect of Ransomware Attacks on Different Industries. In 2017 International Conference on Computational Science and Computational Intelligence (CSCI). IEEE, 121\u2013126."},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.1145\/3168390.3168398"},{"key":"e_1_3_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2021.3133260"},{"key":"e_1_3_2_1_19_1","doi-asserted-by":"publisher","DOI":"10.3390\/su14010008"},{"key":"e_1_3_2_1_20_1","volume-title":"Redemption: Real-time protection against ransomware at end-hosts. In Research in Attacks, Intrusions, and Defenses: 20th International Symposium, RAID","author":"Kharraz Amin","year":"2017","unstructured":"Amin Kharraz and Engin Kirda. 2017. Redemption: Real-time protection against ransomware at end-hosts. In Research in Attacks, Intrusions, and Defenses: 20th International Symposium, RAID 2017, Atlanta, GA, USA, September 18\u201320, 2017, Proceedings. Springer, 98\u2013119."},{"key":"e_1_3_2_1_21_1","unstructured":"Dennis-Kenji Kipker and Malek Barudi. 2020. Cybersecurity - Rechtshandbuch. C.H. Beck M\u00fcnchen."},{"key":"e_1_3_2_1_22_1","first-page":"136","article-title":"Ransomware, threat and detection techniques: A review","volume":"19","author":"Kok S","year":"2019","unstructured":"S Kok, Azween Abdullah, N Jhanjhi, and Mahadevan Supramaniam. 2019. Ransomware, threat and detection techniques: A review. Int. J. Comput. Sci. Netw. Secur 19, 2 (2019), 136.","journal-title":"Int. J. Comput. Sci. Netw. Secur"},{"key":"e_1_3_2_1_23_1","volume-title":"The incident handlers handbook","author":"Kral Patrick","year":"2011","unstructured":"Patrick Kral. 2011. The incident handlers handbook. Sans Institute (2011)."},{"key":"e_1_3_2_1_24_1","doi-asserted-by":"publisher","DOI":"10.1080\/10658980701576412"},{"key":"e_1_3_2_1_25_1","doi-asserted-by":"publisher","DOI":"10.23919\/CyCon51939.2021.9468305"},{"key":"e_1_3_2_1_26_1","volume-title":"Ninth Edition -","author":"Maymi Fernando","unstructured":"Fernando Maymi and Shon Harris. 2021. CISSP All-in-One Exam Guide, Ninth Edition -. McGraw Hill Professional, Madison."},{"key":"e_1_3_2_1_27_1","doi-asserted-by":"publisher","DOI":"10.1145\/3479393"},{"key":"e_1_3_2_1_28_1","doi-asserted-by":"crossref","unstructured":"Andrew\u00a0C Miller Abbas\u00a0M Khan and Sophia Ziad. 2020. Ransomware and Academic International Medicine. In Contemporary Developments and Perspectives in International Health Security-Volume 1. IntechOpen.","DOI":"10.5772\/intechopen.91762"},{"key":"e_1_3_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.1145\/3453153"},{"key":"e_1_3_2_1_30_1","unstructured":"National Institute of Standards and Technology (NIST). 2023. The NIST Cybersecurity Framework 2.0. NIST Cybersecurity Framework Version 2.0. Retrieved from https:\/\/csrc.nist.gov\/pubs\/cswp\/29\/the-nist-cybersecurity-framework-20\/ipd."},{"key":"e_1_3_2_1_31_1","unstructured":"National Institute of Standards and Technology (NIST). 2023. SMALL BUSINESS CYBERSECURITY CORNER. NIST Cybersecurity Framework Version 2.0. Retrieved from https:\/\/www.nist.gov\/itl\/smallbusinesscyber\/guidance-topic\/ransomware."},{"key":"e_1_3_2_1_32_1","doi-asserted-by":"publisher","DOI":"10.1049\/iet-net.2017.0207"},{"key":"e_1_3_2_1_33_1","doi-asserted-by":"publisher","DOI":"10.1093\/cybsec\/tyz003"},{"key":"e_1_3_2_1_34_1","first-page":"10","article-title":"Ransomware: Evolution, mitigation and prevention","volume":"13","author":"Richardson Ronny","year":"2017","unstructured":"Ronny Richardson and Max\u00a0M North. 2017. Ransomware: Evolution, mitigation and prevention. International Management Review 13, 1 (2017), 10.","journal-title":"International Management Review"},{"key":"e_1_3_2_1_35_1","volume-title":"Mountain View","author":"Savage Kevin","year":"2015","unstructured":"Kevin Savage, Peter Coogan, and Hon Lau. 2015. The evolution of ransomware. Symantec, Mountain View (2015)."},{"key":"e_1_3_2_1_36_1","volume-title":"Cloud and Internet Computing: Proceedings of the 12th International Conference on P2P, Parallel, Grid, Cloud and Internet Computing (3PGCIC-2017)","author":"Shakir Hasan\u00a0Awni","year":"2018","unstructured":"Hasan\u00a0Awni Shakir and Aws\u00a0Naser Jaber. 2018. A short review for ransomware: pros and cons. In Advances on P2P, Parallel, Grid, Cloud and Internet Computing: Proceedings of the 12th International Conference on P2P, Parallel, Grid, Cloud and Internet Computing (3PGCIC-2017). Springer, 401\u2013411."},{"key":"e_1_3_2_1_37_1","volume-title":"A socio-technical approach to preventing, mitigating, and recovering from ransomware attacks. Applied clinical informatics 7, 02","author":"Sittig F","year":"2016","unstructured":"Dean\u00a0F Sittig and Hardeep Singh. 2016. A socio-technical approach to preventing, mitigating, and recovering from ransomware attacks. Applied clinical informatics 7, 02 (2016), 624\u2013632."},{"key":"e_1_3_2_1_38_1","volume-title":"Cyber Threat Intelligence Mining for Proactive Cybersecurity Defense: A Survey and New Perspectives","author":"Sun Nan","year":"2023","unstructured":"Nan Sun, Ming Ding, Jiaojiao Jiang, Weikang Xu, Xiaoxing Mo, Yonghang Tai, and Jun Zhang. 2023. Cyber Threat Intelligence Mining for Proactive Cybersecurity Defense: A Survey and New Perspectives. IEEE Communications Surveys & Tutorials (2023)."},{"key":"e_1_3_2_1_39_1","first-page":"417","article-title":"Analysis of cybersecurity standard and framework components","volume":"12","author":"Syafrizal Melwin","year":"2020","unstructured":"Melwin Syafrizal, Siti\u00a0R Selamat, and Nurul\u00a0A Zakaria. 2020. Analysis of cybersecurity standard and framework components. International Journal of Communication Networks and Information Security 12, 3 (2020), 417\u2013432.","journal-title":"International Journal of Communication Networks and Information Security"},{"key":"e_1_3_2_1_40_1","volume-title":"Improving backup system evaluations in information security risk assessments to combat ransomware. Computer and Information Science 11, 1","author":"Thomas Jason","year":"2018","unstructured":"Jason Thomas and Gordon Galligher. 2018. Improving backup system evaluations in information security risk assessments to combat ransomware. Computer and Information Science 11, 1 (2018)."},{"key":"e_1_3_2_1_41_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICoCSec47621.2019.8970786"}],"event":{"name":"EICC 2024: European Interdisciplinary Cybersecurity Conference","location":"Xanthi Greece","acronym":"EICC 2024"},"container-title":["European Interdisciplinary Cybersecurity Conference"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3655693.3661321","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3655693.3661321","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,8,29]],"date-time":"2025-08-29T16:20:23Z","timestamp":1756484423000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3655693.3661321"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024,6,5]]},"references-count":41,"alternative-id":["10.1145\/3655693.3661321","10.1145\/3655693"],"URL":"https:\/\/doi.org\/10.1145\/3655693.3661321","relation":{},"subject":[],"published":{"date-parts":[[2024,6,5]]},"assertion":[{"value":"2024-06-05","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}