Malware Research for Ransomware Defense
Overview
Ransomware has emerged as one of the most destructive forms of malware in recent years. While existing security solutions typically rely on host-based techniques that identify threats using known signatures, these approaches are often limited in scope. This project aims to develop advanced, intel-based capabilities, driven by machine learning, to enhance both the detection of ransomware and the extraction of valuable malware analytics. By processing a live feed of 50,000 raw malware samples daily, the system will analyze abnormal behaviors and extract insights related to ransomware’s network and system activities. These insights will generate actionable threat intelligence and strengthen defenses against ransomware attacks.
Project Team:
Principal Investigator (PI):
Co-PIs:
Researcher:
- Salwa Razaulla
External Advisors and Collaborators:
- Prof. Benjamin Fung, McGill University, Canada
- Prof. Chadi Assi, Concordia University, Canada
Publications:
- Razaulla et al., “The Age of Ransomware: A Survey on the Evolution, Taxonomy, and Research Directions,” in IEEE Access, vol. 11, pp. 40698-40723, 2023, https://doi.org/10.1109/ACCESS.2023.3268535
