On Locky ransomware, Al Capone and Brexit
Book chapter
Authors | MacRae, John and Franqueira, Virginia N. L. |
---|---|
Abstract | The highly crafted lines of code which constitute the Locky cryptolocker ransomware are there to see in plain text in an infected machine. Yet, this forensic evidence does not lead investigators to the identity of the extortionists nor to the destination of the ransom payments. Perpetrators of this ransomware remain unknown and unchallenged and so the ransomware cyber crimewave gathers pace. This paper examines what Locky is, how it works, and the mechanics of this malware to understand how ransom payments are made. The financial impact of Locky is found to be substantial. The paper describes methods for “following the money” to assess how effectively such a digital forensic trail can assist ransomware investigators. The legal instruments that are being established by the authorities as they attempt to shut down ransomware attacks and secure prosecutions are evaluated. The technical difficulty of following the money coupled with a lack of registration and disclosure legislation mean that investigators of this cybercrime are struggling to secure prosecutions and halt Locky. |
The highly crafted lines of code which constitute the Locky cryptolocker ransomware are there to see in plain text in an infected machine. Yet, this forensic evidence does not lead investigators to the identity of the extortionists nor to the destination of the ransom payments. Perpetrators of this ransomware remain unknown and unchallenged and so the ransomware cyber crimewave gathers pace. This paper examines what Locky is, how it works, and the mechanics of this malware to understand how ransom payments are made. | |
Keywords | Locky; Ransomware; Cryptolocker; Bitcoin; Brexit; Digital forensics; Money laundering |
Year | 2018 |
Publisher | Springer |
ISBN | 9783319736976 |
Digital Object Identifier (DOI) | https://doi.org/10.1007/978-3-319-73697-6_3 |
Web address (URL) | http://hdl.handle.net/10545/622073 |
hdl:10545/622073 | |
File | File Access Level Open |
Publication dates | 06 Jan 2018 |
Publication process dates | |
Deposited | 22 Jan 2018, 16:35 |
Contributors | Ulster University and University of Derby |
https://repository.derby.ac.uk/item/95172/on-locky-ransomware-al-capone-and-brexit
Download files
49
total views0
total downloads5
views this month0
downloads this month