Outrunning the Red Queen: Analysis of Ransomware Scripts

Ransomware remains a significant threat in the cybersecurity landscape, often exploiting the asymmetry of information between attackers and defenders. This session delves into my doctoral research that examined 139 ransomware strains over an eight-year period to identify stable, high-frequency techniques employed by attackers. By understanding the persistence of these techniques, we can uncover their critical role in the success of ransomware campaigns. Attendees will gain insights into methodologies for early detection and strategies to fortify environments against such attacks. The presentation will outline the process of identifying these techniques, developing corresponding attack scripts, and leveraging them to bolster defensive measures. Participants will leave equipped with practical approaches to increase detection rates and elevate the effort required for attackers to succeed.