Ransomware on cyber-physical systems: Taxonomies, case studies, security gaps, and open challenges
Ransomware attacks have emerged as one of the most significant cyberthreats faced by organizations worldwide. In recent years, ransomware has also started to target critical infrastructure and Cyber-Physical Systems (CPS) such as industrial control systems, smart grids, and healthcare networks. The...
Saved in:
| Main Author: | |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
KeAi Communications Co., Ltd.
2024-01-01
|
| Series: | Internet of Things and Cyber-Physical Systems |
| Subjects: | |
| Online Access: | http://www.sciencedirect.com/science/article/pii/S2667345223000561 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1832585101852016640 |
|---|---|
| author | Mourad Benmalek |
| author_facet | Mourad Benmalek |
| author_sort | Mourad Benmalek |
| collection | DOAJ |
| description | Ransomware attacks have emerged as one of the most significant cyberthreats faced by organizations worldwide. In recent years, ransomware has also started to target critical infrastructure and Cyber-Physical Systems (CPS) such as industrial control systems, smart grids, and healthcare networks. The unique attack surface and safety-critical nature of CPS introduce new challenges in defending against ransomware. This paper provides a comprehensive overview of ransomware threats to CPS. We propose a dual taxonomy to classify ransomware attacks on CPS based on infection vectors, targets, objectives, and technical attributes. Through an analysis of 10 real-world incidents, we highlight attack patterns, vulnerabilities, and impacts of ransomware campaigns against critical systems and facilities. Based on the insights gained, we identify open research problems and future directions to improve ransomware resilience in CPS environments. |
| format | Article |
| id | doaj-art-dc2cc806e723443183617685c58cf8c3 |
| institution | Kabale University |
| issn | 2667-3452 |
| language | English |
| publishDate | 2024-01-01 |
| publisher | KeAi Communications Co., Ltd. |
| record_format | Article |
| series | Internet of Things and Cyber-Physical Systems |
| spelling | doaj-art-dc2cc806e723443183617685c58cf8c32025-01-27T04:22:35ZengKeAi Communications Co., Ltd.Internet of Things and Cyber-Physical Systems2667-34522024-01-014186202Ransomware on cyber-physical systems: Taxonomies, case studies, security gaps, and open challengesMourad Benmalek0Computer Engineering Department, College of Engineering and Architecture, Al Yamamah University, Riyadh, Saudi ArabiaRansomware attacks have emerged as one of the most significant cyberthreats faced by organizations worldwide. In recent years, ransomware has also started to target critical infrastructure and Cyber-Physical Systems (CPS) such as industrial control systems, smart grids, and healthcare networks. The unique attack surface and safety-critical nature of CPS introduce new challenges in defending against ransomware. This paper provides a comprehensive overview of ransomware threats to CPS. We propose a dual taxonomy to classify ransomware attacks on CPS based on infection vectors, targets, objectives, and technical attributes. Through an analysis of 10 real-world incidents, we highlight attack patterns, vulnerabilities, and impacts of ransomware campaigns against critical systems and facilities. Based on the insights gained, we identify open research problems and future directions to improve ransomware resilience in CPS environments.http://www.sciencedirect.com/science/article/pii/S2667345223000561Cyber-physical systemsIndustrial control systemsSecurityRansomwareChallenges |
| spellingShingle | Mourad Benmalek Ransomware on cyber-physical systems: Taxonomies, case studies, security gaps, and open challenges Internet of Things and Cyber-Physical Systems Cyber-physical systems Industrial control systems Security Ransomware Challenges |
| title | Ransomware on cyber-physical systems: Taxonomies, case studies, security gaps, and open challenges |
| title_full | Ransomware on cyber-physical systems: Taxonomies, case studies, security gaps, and open challenges |
| title_fullStr | Ransomware on cyber-physical systems: Taxonomies, case studies, security gaps, and open challenges |
| title_full_unstemmed | Ransomware on cyber-physical systems: Taxonomies, case studies, security gaps, and open challenges |
| title_short | Ransomware on cyber-physical systems: Taxonomies, case studies, security gaps, and open challenges |
| title_sort | ransomware on cyber physical systems taxonomies case studies security gaps and open challenges |
| topic | Cyber-physical systems Industrial control systems Security Ransomware Challenges |
| url | http://www.sciencedirect.com/science/article/pii/S2667345223000561 |
| work_keys_str_mv | AT mouradbenmalek ransomwareoncyberphysicalsystemstaxonomiescasestudiessecuritygapsandopenchallenges |