Ransomware crime through the lens of neutralisation theory

Author First name, Last name, Institution

Lena Yuryna Connolly, Zayed University
Hervé Borrion, University College London
Budi Arief, University of Kent

Document Type

Article

Source of Publication

European Journal of Criminology

Publication Date

3-19-2025

Abstract

This study examines ransomware crime through the lens of neutralisation theory, and explores techniques used by alleged offenders to justify their involvement in ransomware attacks. This work focuses on highly organised ransomware groups that not only conduct attacks but also operate as Ransomware-as-a-Service businesses. The interview data (n = 9) used in this research were collected by several media and cyber security companies. Drawing on Kaptein and Van Helvoort model of neutralisation techniques, we discovered that interviewees – reported ransomware offenders – distorted the facts (n = 5) and negated societal norms (n = 8). Less common, some interviewees admitted breaking norms, but they rejected responsibility by blaming the circumstances (n = 8) or their own shortcomings (n = 3). These results offer new insights that can support the development of counter-narratives.

DOI Link

10.1177/14773708251320464

ISSN

1477-3708

Disciplines

Computer Sciences

Keywords

Cybercrime community, neutralisation theory, offender justifications, ransomware

Scopus ID

05000827352

Recommended Citation

Connolly, Lena Yuryna; Borrion, Hervé; and Arief, Budi, "Ransomware crime through the lens of neutralisation theory" (2025). All Works. 7258.
https://zuscholars.zu.ac.ae/works/7258

Indexed in Scopus

yes

Open Access

no