Assessing the Actual Impact of a Cryptojacking Attack on Individual IT Systems and Measuring Legal Responses
Assessing the Actual Impact of a Cryptojacking Attack on Individual IT Systems and Measuring Legal Responses
Author(s): Mikołaj Borowski, Jakub Dysarz, Maciej ReichwaldSubject(s): Economy, ICT Information and Communications Technologies
Published by: Asociatia Romana pentru Asigurarea Securitatii Informatiei
Keywords: cryptojacking; malicious cryptomining; web-based attacks; cybercrime; malicious software;
Summary/Abstract: Mining cryptocurrencies is much more profitable if one is not paying for equipment or the electricity used for the mining. This is the main reason why cryptojacking has become so prevalent as one of the predominant cybersecurity threats facing Europe today. While the robustness of an organisation is important, one should also know what to do following a security incident or breach. Whilst post-incident analyses are important, an organization should also ascertain their legal standing as well as any possible ways forward after the damage has been done. In order to have a better idea of such a situation, we conducted an in-depth analysis of what a cryptojacking attack would do to our computer network. We did not do that to better protect ourselves, but rather to assess what management can do after an attack happens. Furthermore, we present areas that should be taken into account when assessing damage and propose legal measures effective at the European Union level, relying on criminal, civil and data protection provisions.
Journal: International Journal of Information Security and Cybercrime (IJISC)
- Issue Year: 10/2021
- Issue No: 2
- Page Range: 51-74
- Page Count: 24
- Language: English
- Content File-PDF
