Enterprise Cybersecurity: Investigating and Detecting Ransomware Infections Using Digital Forensic Techniques

Thomas, J. E., Galligher, R. P., Thomas, M. L., & Gallilgher, G. C. (2019). Enterprise cybersecurity: Investigating and detecting ransomware infections using digital forensic techniques. Computer and Information Science, 12(3). 72-80. doi:10.5539/cisv12n3p72

9 Pages Posted: 20 Nov 2019

See all articles by Jason Thomas

Jason Thomas

Bush School of Government and Public Service; Excelsior College; Grand Canyon University; Concordia University Texas; Northwood University

Ryan P. Galligher

affiliation not provided to SSRN

Macalah L. Thomas

affiliation not provided to SSRN

Gordon Galligher

The Collective Group

Date Written: July 25, 2019

Abstract

As the world continues to grow and embrace technology ransomware is growing problem. When ransomware encrypts storage sytems, systems shutdown, productivity grinds to a halt, and serious long-term damage takes place. As this is a known problem many firms have developed functionality to address ransomware issues in key security technologies such as intrusion protection systems. Many firms, especially smaller ones, may not have access to these technologies or perhaps the integration of these technologies might not yet be possible due ot varying circumstances. Regardless, ransomware must still be addressed as cyber miscreants actually target weak and unprotected environment. Even without tools that automate and aggregrate security capability, systems administrators can use systems utilities, applications, and digital forensic techniques to detect ransomware and defend their environemnts. This paper explores the literature regarding ransomware attacks, discusses current issues on how ransomware might be addressed, and presents recommendations to detect and investigate ransomware infection.

Keywords: cybersecurity, ransomware, digital forencisce, computer security, cyberattacks, data protection, data loss prevention, information systems, systems administration

JEL Classification: M10, M15

Suggested Citation

Thomas, Jason and Galligher, Ryan P. and Thomas, Macalah L. and Galligher, Gordon, Enterprise Cybersecurity: Investigating and Detecting Ransomware Infections Using Digital Forensic Techniques (July 25, 2019). Thomas, J. E., Galligher, R. P., Thomas, M. L., & Gallilgher, G. C. (2019). Enterprise cybersecurity: Investigating and detecting ransomware infections using digital forensic techniques. Computer and Information Science, 12(3). 72-80. doi:10.5539/cisv12n3p72, Available at SSRN: https://ssrn.com/abstract=3484443

Jason Thomas (Contact Author)

Bush School of Government and Public Service ( email )

College Station, TX
United States

Excelsior College ( email )

Albany, NY
United States

Grand Canyon University ( email )

Phoenix, AR
United States

Concordia University Texas ( email )

11400 Concorida University Dr.
Austin, TX 78726
United States

Northwood University ( email )

4000 Whiting Dr
Midland, MI 48640
United States

HOME PAGE: http://www.northwood.edu

Ryan P. Galligher

affiliation not provided to SSRN

Macalah L. Thomas

affiliation not provided to SSRN

Gordon Galligher

The Collective Group ( email )

9433 Bee Caves Road
Building III, Suite 200
Austin, TX 78733
United States

Do you have a job opening that you would like to promote on SSRN?

Paper statistics

Downloads
221
Abstract Views
691
rank
179,600
PlumX Metrics