TY  - EJOU
AU  - Pandya, Sapan 

TI  - Resilient Security Framework for Lottery and Betting Kiosks under Ransomware Attacks
T2  - Journal of Cyber Security

PY  - 2025
VL  - 7
IS  - 1
SN  - 2579-0064

AB  - Ransomware has evolved from opportunistic malware into a global economic weapon, crippling critical services and extracting billions in illicit revenue. While most research has centered on enterprise networks and healthcare systems, an equally vulnerable frontier is emerging in lottery and betting kiosks—self-service financial Internet of Things (IoT) devices that handle billions of dollars annually. These terminals operate unattended, rely on legacy operating systems, and interact with sensitive transactional data, making them prime ransomware targets. This paper introduces a Resilient Security Framework (RSF) for kiosks under ransomware threat conditions. RSF integrates three defensive layers: (1) prevention through application allow-listing, secure boot, and Zero Trust (ZT) segmentation, (2) detection via artificial intelligence (AI) driven anomaly monitoring of system and transaction telemetry, and (3) response employing secure rollback, blockchain-backed forensic logging, and remote wipe capabilities. A synthetic testbed emulating 500 kiosks over a 72-h continuous simulation under ransomware campaigns representing WannaCry, Ryuk, and Conti variants demonstrates the RSF’s effectiveness. Compared with a baseline antivirus-only configuration, the RSF reduced mean time to detection (MTTD) by 41% (from 52 to 31 min), mean time to recovery (MTTR) by 53% (from 120 to 56 min), and downtime-related operational losses by 37% over the three-day experiment window. These findings validate the RSF’s ability to enhance resilience and recovery speed in large kiosk deployments while maintaining compliance with regulatory uptime requirements.
KW  - Ransomware; resilient security framework; lottery & betting terminals; zero trust; IoT security

DO  - 10.32604/jcs.2025.073670