Ransomware History

************ ****** Ransomware History************

Ransomware has been a part of the cybersecurity landscape for much longer than most people realize. The concept of using cryptography to extort individuals and organizations was first introduced in the mid-1990s. In 1996, Adam L. Young and Moti Yung proposed the use of public-key cryptography for ransomware in the proceedings of the IEEE Symposium on Security and Privacy. Their work demonstrated how cryptography, traditionally used to secure and protect data, could instead be leveraged to perform extortion-based attacks, leading to loss of data access, breaches of confidentiality, and potential data leaks.

Young and Yung's proof-of-concept involved a "cryptovirus" created for the Apple Macintosh SE/30, utilizing RSA (Rivest-Shamir-Adleman) and TEA (Tiny Encryption Algorithm) asymmetric block ciphers. This proof-of-concept demonstrated the practical feasibility of encrypting data in a way that would be impossible to reverse without access to a private decryption key.

************** Understanding "Asymmetric" in Cryptography***************

The term "asymmetric" refers to the use of two distinct keys in cryptographic operations—one for encryption and the other for decryption. This is the fundamental principle of public-key cryptography. Unlike symmetric-key algorithms, where the same key is used for both encryption and decryption by both the sender and receiver, asymmetric cryptography employs a public key for encryption and a private key for decryption. 

This distinction is crucial for ransomware attacks because the use of asymmetric cryptography allows an attacker to encrypt data on a victim's system using the public key while keeping the private key secret. As a result, the encrypted data cannot be decrypted without the private key, which the attacker holds. This ensures that the victim cannot reverse the encryption without paying the ransom, hence the term "ransomware."

The use of asymmetric encryption in ransomware makes it highly effective for extortion, as it prevents victims from easily decrypting their files or recovering their data without the corresponding private key held by the attacker.