Advances in technology have led to the use of cloud systems, the storage and distribution of files over the Internet, especially Saas (Software as a Service), which is now widely used by businesses due to its great advantage of scalability and practicality. However, in the midst of this technology, there has been an increase in ransomware attacks, a type of malware designed to encrypt data storage areas on computers and servers, causing users to lose access to their data in the cloud. The main objective of this work is to apply a methodology based on IDS (Intrusion Detection Systems), using the Snort tool in a virtualized network environment in Oracle Virtualbox, on the Kali Linux virtual machine, to analyze and solve problems with ransomware attacks in the cloud. The goal is to present ideas and considerations to train users to take security measures against these attacks should they occur at any time, making the work of cybercriminals more difficult. To keep this storage environment clean and secure, we need the cooperation of the security software, with rules and alerts that are always up to date, together with the monitoring team.
Read full abstract