NEXT-GEN RANSOMWARE DEFENSE: MACHINE LEARNING- POWERED THREAT DETECTION
Abstract
Ransomware attacks pose a significant and escalating threat to individuals and organizations, causing substantial financial and operational disruptions. This research explores the application of machine learning techniques for the proactive prediction of ransomware activity. By analyzing a comprehensive dataset of system behaviors, network traffic, and file system modifications, we develop predictive models capable of identifying potential ransom ware attacks before encryption occurs. We employ a range of machine learning algorithms, including Random Forest, Lazy Predict, to classify malicious activity. Our methodology incorporates feature engineering to extract relevant indicators of ransom ware behavior, and we evaluate the performance of our models using rigorous testing and validation of datasets using LIME. In order to improve the detection rate of ransomware, the data imbalance was addressed by utilizing the SMOTE- Tomek method, which allowed for a more robust machine learning prediction model. The results demonstrate the effectiveness of machine learning in enhancing ransomware detection and mitigation, offering a valuable tool for strengthening cyber security defenses.
Downloads
Copyright (c) 2025 IJRDO -Journal of Computer Science Engineering
This work is licensed under a Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International License.
Author(s) and co-author(s) jointly and severally represent and warrant that the Article is original with the author(s) and does not infringe any copyright or violate any other right of any third parties, and that the Article has not been published elsewhere. Author(s) agree to the terms that the IJRDO Journal will have the full right to remove the published article on any misconduct found in the published article.
