This HTML5 document contains 44 embedded RDF statements represented using HTML+Microdata notation.

The embedded RDF content will be recognized by any processor of HTML5 Microdata.

Namespace Prefixes

PrefixIRI
dctermshttp://purl.org/dc/terms/
n23doi:10.1007/
n6https://kar.kent.ac.uk/id/eprint/92304#
n2https://kar.kent.ac.uk/id/eprint/
wdrshttp://www.w3.org/2007/05/powder-s#
n10http://purl.org/ontology/bibo/status/
dchttp://purl.org/dc/elements/1.1/
rdfshttp://www.w3.org/2000/01/rdf-schema#
n19https://kar.kent.ac.uk/id/subject/
n13https://demo.openlinksw.com/about/id/entity/https/raw.githubusercontent.com/annajordanous/CO644Files/main/
n7http://eprints.org/ontology/
n18https://kar.kent.ac.uk/id/event/
n11http://www.loc.gov/loc.terms/relators/
bibohttp://purl.org/ontology/bibo/
n17https://kar.kent.ac.uk/id/publication/
n16https://kar.kent.ac.uk/id/org/
rdfhttp://www.w3.org/1999/02/22-rdf-syntax-ns#
owlhttp://www.w3.org/2002/07/owl#
n21https://kar.kent.ac.uk/92304/
n8https://kar.kent.ac.uk/id/document/
n15https://kar.kent.ac.uk/id/
xsdhhttp://www.w3.org/2001/XMLSchema#
n4https://demo.openlinksw.com/about/id/entity/https/www.cs.kent.ac.uk/people/staff/akj22/materials/CO644/
n12https://kar.kent.ac.uk/id/person/

Statements

Subject Item
n2:92304
rdf:type
bibo:Article n7:ConferenceItemEPrint n7:EPrint bibo:AcademicArticle
rdfs:seeAlso
n21:
owl:sameAs
n23:978-3-030-91625-1_5
n11:EDT
n12:ext-b6ab3e409894d388c718e64a7a23ffbc n12:ext-6215a8feb7ccc0cb043a1d269ddc4638 n12:ext-e1f972dab43498dc3ab4d1f3e9a9912e
n7:hasAccepted
n8:3258053
n7:hasDocument
n8:3258064 n8:3258204 n8:3258205 n8:3258206 n8:3258207 n8:3258208 n8:3258209 n8:3258060 n8:3258061 n8:3258062 n8:3258063 n8:3258053
n7:hasPublished
n8:3258204
dc:hasVersion
n8:3258053 n8:3258204
dcterms:title
Industrialising Blackmail: Privacy Invasion Based IoT Ransomware
wdrs:describedby
n4:export_kar_RDFN3.n3 n13:export_kar_RDFN3.n3
dcterms:date
2021-11
dcterms:creator
n12:ext-j.c.hernandez-castro@kent.ac.uk n12:ext-b.arief@kent.ac.uk n12:ext-d.j.barnes@kent.ac.uk n12:ext-crb34@kent.ac.uk
bibo:status
n10:peerReviewed n10:published
dcterms:publisher
n16:ext-1c5ddec173ca8cdfba8b274309638579
bibo:abstract
Ransomware (malware that threatens to lock or publish victims’ assets unless a ransom is paid) has become a serious security threat, targeting individual users, companies and even governments, causing significant damage, disruption and cost. Instances of ransomware have also been observed stealing private data and blackmailing their victims. Worryingly, the prevalence of Internet of Things (IoT) devices and the massive amount of personal data that they collect have opened up another avenue of attack. The main aim of this paper is to determine whether privacy invasion based ransomware would be a viable vector for attackers to use on IoT devices. The secondary aim is to identify countermeasures that can be implemented to prevent such attacks from being used. To accomplish these aims, we examined how private data accessible via IoT devices could be obtained, processed and managed by a ransomware attacker. We identified a number of data sources on IoT devices that can be used to access private data, such as audio and video feeds. We then investigated methods to interpret such data in order to blackmail the device’s owner. We then produced proof of concept malware for multiple IoT devices, including an external “collator” that manages the valuable data collected, demonstrating that an attack could be performed at scale. This research shows that attackers can use the functionality of an infected device to invade the privacy of the device’s owner, as part of a ransomware attack. We have demonstrated that, given suitable infrastructure, attackers would be able to ransom users for values higher than the cost of the compromised device, as well as heavily damage the trust in the device itself, which would cause further negative impact on the device manufacturer. Finally, we highlight the need for proactive measures to deter this style of attack by applying the suggested countermeasures.
dcterms:isPartOf
n15:repository n17:ext-03029743
dcterms:subject
n19:QA
bibo:authorList
n6:authors
bibo:editorList
n6:editors
bibo:presentedAt
n18:ext-9fb693752eb462ba27a18f961e40278a
bibo:volume
13115