부산대학교 도서관

The utilization of crypto ransomware has emerged as a potent and progressively perilous armament in the cyber criminal’s repertoire, inflicting severe and extensive damages on both individuals and enterprises. Despite the conventional view of Windows-based systems as the most targeted by ransomware attacks, there has been a noticeable shift in focus towards Linux-based systems, posing a new security challenge. Linux, a widely adopted open-source operating system renowned for its robust security and dependability, has been particularly favored by critical infrastructures, government entities, and commercial enterprises. Nevertheless, the recent emergence of ransomware targeting Linux systems has exposed the platform's susceptibility to cyber threats, leading to heightened concerns about the security of these systems. This research article proposes a zero-trust resilience strategy (ZTRS) for Linux based servers and personal computers to effectively mitigate the latest crypto ransomware variants including Hive, Conti, Darkside, REvil and Red Alert. ZTRS adopts a comprehensive and advanced strategy that has been carefully designed to efficiently hinder the fundamental requirements that Linux ransomware relies on to execute its operations. It implements a range of preemptive measures to prevent any efforts by the ransomware to obtain root privileges, and to obstruct the extraction of data that could enable multi-level extortion. The tactics employed by ZTRS are highly effective in safeguarding against the devastating consequences of Linux ransomware attacks.