TY  - EJOU
AU  - Sood, Isha 
AU  - Sharma, Varsha 

TI  - TLERAD: Transfer Learning for Enhanced Ransomware Attack Detection
T2  - Computers, Materials \& Continua

PY  - 2024
VL  - 81
IS  - 2
SN  - 1546-2226

AB  - Ransomware has emerged as a critical cybersecurity threat, characterized by its ability to encrypt user data or lock devices, demanding ransom for their release. Traditional ransomware detection methods face limitations due to their assumption of similar data distributions between training and testing phases, rendering them less effective against evolving ransomware families. This paper introduces TLERAD (Transfer Learning for Enhanced Ransomware Attack Detection), a novel approach that leverages unsupervised transfer learning and co-clustering techniques to bridge the gap between source and target domains, enabling robust detection of both known and unknown ransomware variants. The proposed method achieves high detection accuracy, with an AUC of 0.98 for known ransomware and 0.93 for unknown ransomware, significantly outperforming baseline methods. Comprehensive experiments demonstrate TLERAD’s effectiveness in real-world scenarios, highlighting its adaptability to the rapidly evolving ransomware landscape. The paper also discusses future directions for enhancing TLERAD, including real-time adaptation, integration with lightweight and post-quantum cryptography, and the incorporation of explainable AI techniques.
KW  - Ransomware detection; transfer learning; unsupervised learning; co-clustering; cybersecurity; machine learning; lightweight cryptography; post-quantum cryptography; explainable AI; TLERAD

DO  - 10.32604/cmc.2024.055463