Abstract:
Ransomware nowadays in one of the most critical security threats. Ease of deployment, potentially high profit, ease of widespread and very high level of destruction cause that many cybercriminals and crime organizations invest and develop new variations and new versions of the ransomware software. On the other side there is well known detection technique called honeypots. It creates set of traps and waits for an attacker to get caught. In this paper we will discuss the possibility of usage of the honeypots technique to detect the activity of previously unknown variants/versions of the ransomware.