Ataques de Ransomware en el sector financiero, estrategia de prevención, contención y recuperación.
| dc.contributor.advisor | León Acurio, Joffre Vicente | |
| dc.contributor.author | Vargas Torres, Johan Eraldo | |
| dc.date.accessioned | 2025-04-26T03:54:12Z | |
| dc.date.available | 2025-04-26T03:54:12Z | |
| dc.date.issued | 2025 | |
| dc.identifier.uri | http://dspace.utb.edu.ec/handle/49000/17957 | |
| dc.description | This study focuses on the evaluation of ransomware mitigation strategies in one of the most vulnerable sectors, the financial sector, due to the sensitivity of the information it handles. Ransomware attacks, which encrypt critical data and demand a ransom from the victim, have increased significantly, and have become a sophisticated threat, especially the Ransomware-as-a-Service (RaaS) model. The purpose of this work is to study the performance of financial institutions in relation to cyberattacks and the prevention, containment and recovery practices that can be implemented to protect against ransomware attacks. The common threats that stand out are phishing, Man-in-the-Middle and the use of RaaS. All of them are a consequence of the lack of training in cybersecurity and technical vulnerabilities such as lack of updates or poor network configuration. Despite technological advances, the human factor remains the most vulnerable link in protection against ransomware attacks. The analysis shows that the most effective prevention strategies are updating software, creating regular backups, and segmenting networks, with an effectiveness of between 90% and 97%, while in the containment phase the most effective techniques were the rapid isolation of infected devices and changing compromised passwords, in the recovery phase we found that restoring protected backups was most effective with 98%. | es_ES |
| dc.description | This study focuses on the evaluation of ransomware mitigation strategies in one of the most vulnerable sectors, the financial sector, due to the sensitivity of the information it handles. Ransomware attacks, which encrypt critical data and demand a ransom from the victim, have increased significantly, and have become a sophisticated threat, especially the Ransomware-as-a-Service (RaaS) model. The purpose of this work is to study the performance of financial institutions in relation to cyberattacks and the prevention, containment and recovery practices that can be implemented to protect against ransomware attacks. The common threats that stand out are phishing, Man-in-the-Middle and the use of RaaS. All of them are a consequence of the lack of training in cybersecurity and technical vulnerabilities such as lack of updates or poor network configuration. Despite technological advances, the human factor remains the most vulnerable link in protection against ransomware attacks. The analysis shows that the most effective prevention strategies are updating software, creating regular backups, and segmenting networks, with an effectiveness of between 90% and 97%, while in the containment phase the most effective techniques were the rapid isolation of infected devices and changing compromised passwords, in the recovery phase we found that restoring protected backups was most effective with 98%. | es_ES |
| dc.description.abstract | Este estudio se centra en la evaluación de estrategias de mitigación del ransomware en uno de los sectores más vulnerables como lo es el sector financiero, debido a la sensibilidad de la información que maneja. Los ataques de ransomware, que encriptan datos críticos y exigen un rescate a la víctima, han aumentado de forma notable, y se han convertido en una amenaza sofisticada, sobre todo el modelo Ransomware-as-a-Service (RaaS). El presente trabajo tiene como finalidad estudiar la actuación de las entidades financieras en relación a los ciberataques y las prácticas de prevención, contención y recuperación que pueden poner en marcha para protegerse frente a los ataques de ransomware. Las amenazas comunes que destacan son el phishing, el Man-in-the-Middle y el uso de RaaS. Todas ellas son consecuencia de la falta de capacitación en ciberseguridad y de las vulnerabilidades técnicas como la falta de actualizaciones o la mala configuración de la red. A pesar de los avances tecnológicos, el factor humano sigue siendo el eslabón más vulnerable en la protección contra los ataques de ransomware. El análisis muestra que las estrategias de prevención más eficaces son la actualización de software, crear copias de seguridad periódicas y la segmentación de las redes, con una efectividad de entre un 90 % y un 97 %, mientras que en la fase de contención las técnicas más efectivas fueron el aislamiento rápido de dispositivos infectados, y el cambio de contraseñas comprometidas, en la fase de recuperación encontramos que la restauración de copias de seguridad protegidas obtuvo la mayor efectividad con un 98 %. | es_ES |
| dc.format.extent | 67 p. | es_ES |
| dc.language.iso | es | es_ES |
| dc.publisher | Babahoyo: UTB-FAFI. 2025 | es_ES |
| dc.rights | Attribution-NonCommercial-NoDerivs 3.0 United States | * |
| dc.rights.uri | http://creativecommons.org/licenses/by-nc-nd/3.0/us/ | * |
| dc.subject | Ransomware | es_ES |
| dc.subject | Ciberseguridad | es_ES |
| dc.subject | Prevención | es_ES |
| dc.subject | Contención | es_ES |
| dc.subject | Recuperación | es_ES |
| dc.subject.other | Sistemas de Información | es_ES |
| dc.title | Ataques de Ransomware en el sector financiero, estrategia de prevención, contención y recuperación. | es_ES |
| dc.type | bachelorThesis | es_ES |
Files in this item
This item appears in the following Collection(s)
Except where otherwise noted, this item's license is described as Attribution-NonCommercial-NoDerivs 3.0 United States