All your (data)base are belong to us: Characterizing Database Ransom(ware) Attacks
Kevin van Liebergen
Network and Distributed System Security (NDSS) Symposium 2025 · Day 3 · Ransomware
In an increasingly digital world, databases serve as the bedrock for countless services, storing critical information that ranges from personal data to operational intelligence. This centrality makes them an irresistible target for malicious actors. Kevin van Liebergen, a researcher from the Institute, presented a groundbreaking talk at the NDSS Symposium titled "All your (data)base are belong to us: Characterizing Database Ransom(ware) Attacks." This presentation unveiled the first systematic study into database ransomware attacks, offering a comprehensive look into their prevalence, operational mechanics, and the underlying vulnerabilities that enable them.
AI review
Competent, methodologically sound academic research that fills a genuine gap — the first systematic characterization of database ransomware at scale. The Bitcoin clustering and IOC graph methodology is the interesting part, but the operational findings (weak auth bad, pay no ransom, use backups) are so self-evident they border on padding.