A cyber kill chain based taxonomy of banking Trojans for evolutionary computational intelligence

Kiwia, D, Dehghantanha, A ORCID: 0000-0002-9294-7554, Choo, K-KR and Slaughter, J 2017, 'A cyber kill chain based taxonomy of banking Trojans for evolutionary computational intelligence' , Journal of Computational Science .

[img] PDF - Accepted Version
Restricted to Repository staff only until 1 November 2018.

Download (981kB) | Request a copy

Abstract

Malware such as banking Trojans are popular with financially-motivated cybercriminals. Detection of banking Trojans remains a challenging task, due to the constant evolution of techniques used to obfuscate and circumvent existing detection and security solutions. Having a malware taxonomy can facilitate the design of mitigation strategies such as those based on evolutionary computational intelligence. Specifically, in this paper, we propose a cyber kill chain based taxonomy of banking Trojans features. This threat intelligence based taxonomy provides a stage-by-stage operational understanding of a cyber-attack, and can be highly beneficial to security practitioners and inform the design of evolutionary computational intelligence on Trojans detection and mitigation strategy. The proposed taxonomy is built upon our analysis of a real-world dataset of 127 banking Trojans collected from December 2014 to January 2016 by a major UK-based financial organization.

Item Type: Article
Schools: Schools > School of Computing, Science and Engineering > Salford Innovation Research Centre (SIRC)
Journal or Publication Title: Journal of Computational Science
Publisher: Elsevier
ISSN: 1877-7503
Related URLs:
Funders: FP7-PEOPLE-2013-IIF
Depositing User: Dr. Ali Dehghantanha
Date Deposited: 24 Nov 2017 10:11
Last Modified: 24 Nov 2017 16:10
URI: http://usir.salford.ac.uk/id/eprint/44432

Actions (login required)

Edit record (repository staff only) Edit record (repository staff only)

Downloads

Downloads per month over past year