The First Computer Virus: Origins and Evolution

Imagine opening your computer to find a sneaky bug that wasn’t just any bug but a pioneering troublemaker marking the dawn of a digital dilemma. We’re talking about the first computer virus, a tiny piece of code that embarked on a journey, opening Pandora’s box of digital infections. It’s not just a piece of programming folklore; understanding the origins and evolution of the first computer viruses sheds light on how these digital pests have morphed into sophisticated threats, impacting everything from personal PCs to global cybersecurity frameworks.

Our exploration will take us back to where it all began, with the self-replicating automata theory leading up to the creeper virus, acknowledged as the world’s first computer virus, which cheekily declared, “I’m the creeper, catch me if you can!” We’ll hop through the digital timeline, visiting various milestones – from the rabbit virus multiplying itself to annoyance to the first Trojan horse that sneaked into systems with a guise and the notorious Brain boot sector virus that left its mark literally on disks around the globe. Not to forget the Morris worm, which spectacularly highlighted the vulnerabilities of the internet. Fast forward to the present, and we’ll delve into the rise of ransomware, exploring how these historical nuisances have paved the way for modern cybersecurity battles. So, buckle up as we take you on a nostalgic ride through the history of computer viruses, revealing how each has contributed to the complex cybersecurity landscape we navigate today.

Theory of Self-Replicating Automata

In the 1940s, John von Neumann, a pioneering mathematician, embarked on a fascinating journey to explore the concept of machines that could replicate themselves, much like biological organisms. He developed the idea of a universal constructor within a cellular automaton environment, which was a groundbreaking concept at the time. Imagine a machine not made of gears and metal but of theoretical cells that could mimic the process of natural selection. Sounds like a sci-fi movie plot, right?

Von Neumann’s work was detailed in his book Theory of Self-Reproducing Automata, published posthumously in 1966 by Arthur W. Burks. This book laid the foundational principles for what we now understand as automata theory, complex systems, and even artificial life.

During his lectures at the University of Illinois in 1949, Von Neumann posed an intriguing question: What is the threshold of complexity that a machine must cross to evolve autonomously? His designs separated a universal constructor, which builds the machine, from a copier, replicating the machine’s description. This separation allowed for mutations during replication, enabling these machines to evolve, much like organisms in nature.

Von Neumann's System of Self-Replication Automata with the ability to evolve (Figure adapted from Luis Rocha's Lecture Notes at Binghamton University[6]). i) the self-replicating system is composed of several automata plus a separate description (an encoding formalized as a Turing 'tape') of all the automata: Universal Constructor (A), Universal Copier (B), Operating System (C), extra functions not involved with replication (D), and separate description Φ(A,B,C,D) encoding all automata. ii) (Top) Universal Constructor produces (decodes) automata from their description (active mode of description); (Bottom) Universal Copier copies description of automata (passive mode of description); Mutations Φ(D') to description Φ(D) (not changes in automaton D directly) propagate to the set of automata produced in next generation, allowing (automata + description) system to continue replicating and evolving (D → D').[4] The active process of construction from a description parallels DNA translation, the passive process of copying the description parallels DNA replication, and inheritance of mutated descriptions parallels Vertical inheritance of DNA mutations in Biology,[4][5] and were proposed by Von Neumann before the discovery of the structure of the DNA molecule and how it is separately translated and replicated in the Cell.[6] By PlaceboOracle - Own work, CC BY-SA 4.0, Link

In one of his theoretical models, von Neumann explored how a self-replicating machine could handle information in two distinct ways: one where the information was interpreted as instructions to build a copy of itself and another where the information was merely copied and passed on, similar to how DNA works in living cells. This was a revolutionary idea, especially considering it was conceptualised before the structure of DNA was even discovered in 1953!

Von Neumann’s initial attempts to solve the self-replication puzzle were presented in his 1948 paper for the Hixon Symposium, titled “The General and Logical Theory of Automata”. However, it wasn’t until he collaborated with his colleague Stanislaw Ulam, who suggested using a cellular model, that von Neumann could fully articulate a machine capable of self-reproduction based on cellular automata.

In this cellular automaton model, each cell has a specific state and is connected to its neighbours, forming a grid. The state of each cell evolves according to predefined rules based on the states of its neighbouring cells. Von Neumann demonstrated that such a system could exhibit dynamics similar to biological processes of self-reproduction and evolution.

Through his exploration of self-replicating machines, von Neumann also touched on the potential for conflicts and interactions between these machines, hinting at the broader implications for understanding ecological and social interactions within this framework. This early work not only pushed the boundaries of machine theory but also provided a new lens through which to view the complexities of life itself.

The Creeper Program

Imagine stepping back to 1971, when the digital world was blossoming, and computers were these giant machines that looked more like a science fiction set than the sleek devices you’re used to today. Now, picture this: one day, these early tech wizards saw a cheeky message on their screens: “I’m the Creeper; catch me if you can!” This wasn’t a prank by a mischievous programmer but rather the debut of the world’s first computer virus, Creeper.

Developed by Bob Thomas at BBN, a company that was pioneering the early internet (then ARPANET), Creeper was an experimental program designed not to wreak havoc but to explore possibilities. The concept of a self-replicating program that could hop from one machine to another was groundbreaking. Think of it as the digital equivalent of the first step on the moon but for computers!

Creeper was a worm, a type of virus that replicates itself and spreads to other systems. However, unlike the sinister viruses you might hear about today, Creeper was pretty benign. Its only trick was to display its message, which was more of a playful taunt than a threat. It didn’t steal data, lock files for ransom, or cause any damage. After displaying its message, it would simply jump to the next connected system, leaving the previous one unharmed.

This quirky program moved between DEC PDP-10 mainframe computers running the TENEX operating system. Interestingly, Creeper had to get permission to run on each machine, making its journey across the network a sort of agreed-upon adventure among the select few who were in on the experiment.

Bob Thomas named his creation after a character from the popular ’70s cartoon “Scooby-Doo,” which is fitting, considering Creeper’s harmless nature and the playful challenge it posed. Just like a scene from a cartoon, Creeper would pop up, deliver its line, and scoot off to the next machine, all in good fun.

Every episode of the original Scooby-Doo format contains a penultimate scene in which the heroes unmask the seemingly supernatural antagonist to reveal a real person in a costume, as in this scene from "Nowhere to Hyde", an episode of Scooby-Doo, Where Are You! originally aired on CBS on September 12, 1970. Fair use, Link

The impact of Creeper was minimal, affecting no more than 28 machines—essentially all the computers running TENEX at the time. This limited spread, along with its benign nature, makes Creeper a fascinating footnote in the history of computer science, demonstrating early on what was technically possible in the realm of networked computers.

So, next time you think about computer viruses, remember that not all of them started as villains. Some, like Creeper, were just digital explorers, setting the stage for the complex cybersecurity world you know today. And they did it with a wink, saying, “Catch me if you can!”.

The Rabbit Virus

Imagine a software critter that multiplies faster than you can say “stop!”—that’s the essence of the Rabbit Virus, or as tech heads might call it, a “fork bomb.” This type of virus is like a mischievous digital bunny, hopping from process to process and multiplying until it exhausts all the system resources.

The concept is fairly simple yet devastating. The Rabbit Virus uses the fork system call, a standard method in many operating systems for creating a new process. Here’s the trick: it recursively calls itself, spawning copies at a rate that would make real rabbits envious. As these child processes multiply, they consume all available CPU and memory, causing the system to slow to a crawl and eventually freeze.

This digital critter first made its appearance around 1974 and was not just a harmless prank. Unlike its playful name suggests, the Rabbit Virus could bring entire systems down, leading to a “kernel panic.” This is when the operating system’s core gives up, overwhelmed by the demand.

Picture of unrelated rabbit

In technical terms, imagine this scenario: you have a function that creates two processes each time it’s called, and each process calls the function again. It’s a never-ending loop of process creation that quickly fills up the system’s table of processes, leaving no room for legitimate software to run. Your system becomes unresponsive, ignoring even desperate CTRL+ALT+DEL attempts.

The quirky part? The simplest version of a fork bomb can be written in a single line of code in Unix, like this::(){ :|:& };:. Don’t let its shortness fool you; this line can unleash chaos within seconds, proving that even the smallest bits of code can have a massive impact.

So, next time you hear about the Rabbit Virus, picture a digital bunny, not so cuddly, wreaking havoc in the digital forest of your computer’s operating system. And remember, while it might sound cute, it’s a reminder of the potent effects of even the simplest forms of malware.

The First Trojan

In 1975, a clever piece of software called ANIMAL made its debut, created by John Walker. This wasn’t just any software; it played a simple game of 20 questions with users trying to guess which animal they were thinking of. However, hidden within ANIMAL was another program named PERVADE. While users were busy guessing animals, PERVADE quietly copied itself and ANIMAL into every directory it could access.

The twist? ANIMAL and PERVADE were distributed on magnetic tapes among Walker’s friends, making it highly popular and widely shared. This method of spreading was unique because PERVADE didn’t harm the computers or the data. Instead, it simply made sure that ANIMAL was present in all accessible directories, which technically made it the world’s first Trojan, even though it was initially perceived as harmless.

Interestingly, the spread of this Trojan was eventually stopped by an operating system upgrade that altered the file status tables used by PERVADE, showcasing an early example of how software updates can prevent malware distribution.

This quirky tale of ANIMAL and PERVADE illustrates the Trojan concept perfectly. Like the wooden horse used by the Greeks to sneak into Troy, ANIMAL appeared harmless and even engaging, but it carried a hidden agenda. Just as the soldiers hidden inside the Trojan Horse waited for the right moment to take action, PERVADE waited silently within ANIMAL, springing into action without the user’s consent.

Today, Trojans follow a similar pattern but with much higher stakes, often used to gain backdoor access to systems or steal sensitive data. They might come disguised as innocent-looking emails, attachments, or downloads, but once they’re in, they can take control, much like the soldiers who captured Troy.

So, next time you download software or open an attachment, remember the tale of ANIMAL and PERVADE. It’s a reminder that even the most innocent-looking programs can have a hidden agenda, just waiting for the right moment to spring into action.

The Brain Boot Sector Virus

In 1986, a rather intriguing virus called the Brain Boot Sector Virus appeared on the scene, marking a significant milestone in the history of computer viruses. Created by two brothers, Basit and Amjad Farooq Alvi, from Lahore, Pakistan, this virus targeted the boot sector of floppy disks. Unlike modern malware, Brain was not intended to cause havoc but to combat software piracy, specifically to protect the brothers’ medical software from being copied illegally.

What made Brain stand out was its method of infection. It cleverly replaced the boot sector of a floppy disk with its code while moving the original boot sector to another sector and marking it as bad. This swap wasn’t immediately apparent to users, which allowed the virus to spread quietly from floppy to floppy. Infected disks displayed a change in the disk label to ©Brain, and users were greeted with a cheeky message: “Welcome to the Dungeon © 1986 Amjads (pvt) Ltd VIRUS_SHOE RECORD V9.0”.

Brain also showcased an early example of a “stealth” virus. It could hide from detection by modifying the BIOS calls used to read the boot sector, making it seem like the original boot sector was untouched. This stealthiness was quite sophisticated for its time, making Brain a tough nut to crack for the early antivirus programs.

Hex dump of the Brain virus, generally regarded as the first computer virus for the IBM Personal Computer (IBM PC) and compatibles. By Avinash Meetoo - [email protected] - http://www.noulakaz.net/ - Avinashm at en.wikipedia - Transferred from en.wikipedia to Commons., CC BY 2.5, Link

Despite its disruptive capabilities, Brain was selective in its targets. It avoided hard disks by checking the most significant bit of the BIOS drive number, a precaution that many other viruses of the time did not take. This selectivity prevented the virus from causing more severe damage to data stored on hard disks.

The creators even included their contact information within the virus’s code. This bold move invited infected users to reach out to them directly for a solution, which they referred to as “vaccination”. The message read: “Beware of this VIRUS…. Contact us for vaccination…” along with their phone numbers and address.

Although initially contained within Pakistan, the spread of the Brain eventually reached a global scale, affecting systems across Europe and North America. This widespread impact underscored the potential for computer viruses to propagate internationally, even before the internet was commonplace.

The legacy of the Brain virus is significant as it highlighted the necessity for robust antivirus solutions and raised awareness about the risks associated with software piracy. It serves as a reminder of the ever-evolving landscape of cybersecurity and the continuous need for vigilance in protecting digital systems.

The Morris Worm

On November 2, 1988, a seemingly innocuous day transformed the digital landscape forever when the Morris Worm, named after its creator, Robert Tappan Morris, a Cornell University student, infiltrated about 6,000 computers connected via the early form of the internet, the ARPANET. This event marked a pivotal moment, not just in computing but in the broader societal understanding of network vulnerabilities.

Imagine you’re playing in a sandbox, building castles and suddenly, someone’s mischievous little robot starts knocking them down faster than you can build them up. That’s a bit like what happened with the Morris Worm. It exploited weaknesses in UNIX systems through sendmail backdoors, buffer overflows in the finger daemon, and weaknesses in rsh/rexec commands, not to mention guessing passwords like a sneak-thief. This worm didn’t just visit; it overstayed its welcome by re-infecting machines to ensure its survival and spread.

The aftermath was chaotic. Picture this: thousands of computer wizards staring at their screens in disbelief as their machines slowed to a crawl and crashed—kind of like watching a magician pulling a never-ending scarf from a hat, except it’s not colourful silk but crippling commands that won’t stop. The Morris Worm didn’t just disrupt systems; it sparked a wildfire of concern and curiosity about digital security, leading to sleepless nights and frenzied forum discussions as experts scrambled to dissect and tackle this digital beast.

The computers Byte (magazine) retrospectively called the "1977 Trinity" (L-R): Commodore PET 2001-8, Apple II, TRS-80 Model I.[1] By Trinity77.jpg: Tim Colegrove derivative work: Pittigrilli - Own work, CC BY-SA 4.0, Link

This quirky invader from 1988 didn’t just mess with computers; it messed with minds, too. It forced a rethink of how open our digital playgrounds should be and whether our ‘sandbox’ was as safe as we thought. It turned out not so much. The Morris Worm was like that one guest at a party who sneaks in without an invite and leaves a mess behind, making everyone wary of the next knock at the door.

Fast forward a few decades, and the digital landscape is no longer just a playground but a fortress. Thanks to incidents like the Morris Worm, a whole new world of cybersecurity measures, from firewalls to intricate password policies. It’s like the digital equivalent of a castle moat with crocodiles—only the crocodiles are antivirus programs and firewalls, and the moat is made of sophisticated algorithms designed to keep out unwanted intruders.

So, next time you type in that complex password or update your antivirus software, remember the Morris Worm. It’s a tale of curiosity, a bit of mischief, and a lot of learning, reminding us that in the digital world, being prepared is not just wise but essential.

One of the lesser-known yet fascinating aspects of the Morris Worm incident is how it inadvertently led to the establishment of the first Computer Emergency Response Team (CERT). Following the chaos caused by the worm, it became evident that there needed to be a dedicated response mechanism to handle cybersecurity incidents. DARPA (Defense Advanced Research Projects Agency), recognizing the need for a rapid and coordinated response to such threats, funded the creation of the CERT Coordination Center at Carnegie Mellon University in 1988. This move effectively formalized the practice of cybersecurity incident response, setting the stage for modern cybersecurity protocols and emergency response strategies that organizations around the world rely on today. The formation of CERT was a direct response to the vulnerabilities exposed by the Morris Worm, illustrating how a single event can catalyze significant advancements in the field of cybersecurity.

The Rise of Ransomware

Ransomware has become a significant threat to organizations of all sizes and industries, aiming to seize files and company assets for ransom. Let’s dive into ransomware’s quirky yet alarming evolution, which started with a rather academic twist at a health conference.

The Beginnings: AIDS Trojan

The first documented ransomware attack, known as the “AIDS Trojan,” occurred in 1989 during the World Health Organization’s AIDS conference. Biologist Joseph Popp distributed 20,000 floppy disks containing malware that encrypted file names after the computer was booted 90 times, displaying a message demanding a $189 ransom to a PO box in Panama. This marked the start of ransomware, combining social engineering with digital extortion.

The Evolution of Ransomware Encryption

Initially, ransomware like the “Archiveus” trojan used simple symmetric encryption, which was relatively easy for antivirus companies to crack. However, by 2005, ransomware began employing more robust asymmetric encryption, making decryption significantly more challenging without the requisite keys. This shift marked a turning point, leading to more sophisticated attacks such as the “GPcode”, which targeted Windows operating systems with increasingly secure RSA-1024 encryption.

The Rise of CryptoLocker and Modern Ransomware

By 2013, ransomware had evolved into a formidable threat with the emergence of CryptoLocker. This ransomware was notorious for its use of a botnet and phishing tactics to spread and for its robust 2048-bit RSA encryption, which was nearly impossible to crack. CryptoLocker’s success, generating millions in ransom, inspired a wave of similar ransomware strains, propelling ransomware into a significant criminal enterprise.

Diversification into Mobile and Mac Attacks

The ransomware landscape continued to diversify with attacks targeting not only PCs but also mobile and Mac devices. In 2014, the “Oleg Pliss” attack exploited stolen Apple account credentials to lock iPhones, and the “Spyeng” ransomware targeted Android devices, showcasing the expanding reach of these attacks. By 2016, “KeRanger” marked the first successful ransomware attack on Macs, demanding ransoms in Bitcoin, further illustrating the adaptability and persistence of ransomware threats.

The Impact of Cryptocurrencies on Ransomware

The adoption of cryptocurrencies like Bitcoin has significantly impacted the ransomware business model. Cryptocurrencies offer a secure, anonymous way to collect ransoms, enhancing the appeal of ransomware for cybercriminals. This has enabled ransomware attacks to become more anonymous and more complicated to trace, increasing challenges for cybersecurity professionals.

Ransomware has advanced in its technical capabilities and psychological tactics, often playing on fears and urgency to compel victims to pay ransom. As this malware evolves, it remains a critical threat to global cybersecurity, requiring ongoing vigilance and innovative countermeasures.

The Impact of Computer Viruses on Cybersecurity

Since the dawn of the digital age, computer viruses have been the sneaky troublemakers in the vast playground of the internet, constantly challenging the cybersecurity measures in place. These digital pests, ranging from the mischievous to the downright destructive, have forced us to continually evolve our defences, transforming cybersecurity into a high-stakes game of digital cat and mouse.

Imagine a world where your computer acts more like a rebellious teenager, occasionally throwing tantrums by deleting files or freezing up, thanks to the antics of viruses like the ILOVEYOU or MyDoom. These viruses caused chaos and racked up billions in damages, making them some of the most expensive headaches in tech history.

Evolution of Cyber Threats

As technology advanced, so did the complexity of these cyber threats. Early viruses like the Elk Cloner were more about showing off coding skills, but modern malware, such as ransomware, plays for higher stakes—like locking down your data for a digital ransom. This shift has made cybersecurity a critical chessboard where every move counts.

The Economic Impact of Viruses

It’s not just about lost files or downtime; the economic impact of viruses like Storm Worm or the infamous WannaCry has been monumental, pushing cybersecurity to the forefront of global tech priorities. These incidents have not only affected individual users but have also put entire corporate networks and government systems at risk, showcasing the domino effect of digital vulnerabilities.

Cybersecurity as a Necessity

The relentless innovation of cyber threats has turned cybersecurity from a nice-to-have into a must-have. Today, protecting digital assets is as crucial as locking your doors at night. This necessity has spurred the growth of a multi-billion-dollar industry focused on defending against these digital invaders.

The Continuous Battle

The history of computer viruses is a stark reminder of the ongoing battle between cyber attackers and defenders. Each new virus, from Conficker to Stuxnet, has brought new challenges and has continually forced the cybersecurity community to up its game. The landscape of digital threats is a battlefield where each side learns and adapts from the other, making the next move unpredictable and the stakes ever higher.

This constant evolution highlights the importance of staying vigilant and proactive, not just in developing new defences but also in educating users about the risks and the best practices for staying safe online. After all, in the digital world, the next cyber threat is just around the corner, waiting for an opportune moment to strike.

Conclusion

Through the epic digital trek from the quirky beginnings of Creeper to the daunting reality of modern ransomware, it’s as if we’ve zoomed through a cyber time warp, watching computer viruses evolve from mere digital hijinks to full-fledged internet bogeymen. Thinking about these viruses is like picturing those old monster movies—except the monsters are on our screens, not hiding under our beds. These digital gremlins have pushed us into an endless game of digital tag, always keeping cybersecurity experts on their toes, ready to dash after the next threat sprinting across the internet field.

The journey through the world of computer viruses makes one thing crystal clear: the fight against these cyber critters is far from over. It’s like a never-ending season of your favourite whodunit show—each episode reveals a new plot twist and a more cunning villain. But just as our heroes never give up, neither do we in the realm of cybersecurity. So, while the quest continues, we arm ourselves with the mighty shield of knowledge and the sword of innovation, ready to face whatever sneaky new malware pops out of the digital shadows next. Let’s keep our digital playground safe, one quirky battle at a time.

FAQ

References

Show links

[1] – https://www.kaspersky.com/resource-center/threats/a-brief-history-of-computer-viruses-and-what-the-future-holds
[2] – https://en.wikipedia.org/wiki/Computer_virus
[3] – https://www.sentrian.com.au/blog/a-short-history-of-computer-viruses
[4] – https://usa.kaspersky.com/resource-center/threats/a-brief-history-of-computer-viruses-and-what-the-future-holds
[5] – https://en.wikipedia.org/wiki/Computer_virus
[6] – https://study.com/academy/lesson/the-history-of-computer-viruses.html
[7] – https://cba.mit.edu/events/03.11.ASE/docs/VonNeumann.pdf
[8] – https://en.wikipedia.org/wiki/Von_Neumann_universal_constructor
[9] – https://embryo.asu.edu/pages/john-von-neumanns-cellular-automata
[10] – https://en.wikipedia.org/wiki/Von_Neumann_universal_constructor
[11] – https://cba.mit.edu/events/03.11.ASE/docs/VonNeumann.pdf
[12] – https://embryo.asu.edu/pages/john-von-neumanns-cellular-automata
[13] – https://www.exabeam.com/blog/infosec-trends/creeper-the-worlds-first-computer-virus/
[14] – https://en.wikipedia.org/wiki/Creeper_and_Reaper
[15] – https://www.kaspersky.com/resource-center/threats/a-brief-history-of-computer-viruses-and-what-the-future-holds
[16] – https://www.exabeam.com/blog/infosec-trends/creeper-the-worlds-first-computer-virus/
[17] – https://en.wikipedia.org/wiki/Creeper_and_Reaper
[18] – https://pandorafms.com/blog/creeper-and-reaper/
[19] – https://www.imperva.com/learn/ddos/fork-bomb/
[20] – https://en.wikipedia.org/wiki/Fork_bomb
[21] – https://www.proofpoint.com/us/threat-reference/bad-rabbit
[22] – https://www.infosecinstitute.com/resources/malware-analysis/malware-spotlight-wabbit/
[23] – https://usa.kaspersky.com/resource-center/threats/a-brief-history-of-computer-viruses-and-what-the-future-holds
[24] – https://www.imperva.com/learn/ddos/fork-bomb/
[25] – https://en.wikipedia.org/wiki/Trojan_horse_(computing)
[26] – https://www.kaspersky.com/resource-center/threats/a-brief-history-of-computer-viruses-and-what-the-future-holds
[27] – https://www.malwarebytes.com/trojan
[28] – https://www.kaspersky.com/resource-center/threats/a-brief-history-of-computer-viruses-and-what-the-future-holds
[29] – https://en.wikipedia.org/wiki/Timeline_of_computer_viruses_and_worms
[30] – https://www.fortinet.com/resources/cyberglossary/trojan-horse-virus
[31] – https://en.wikipedia.org/wiki/Brain_(computer_virus)
[32] – https://medium.com/geekculture/brain-the-worlds-first-computer-virus-f3758323d894
[33] – https://www.pcmag.com/encyclopedia/term/brain-virus
[34] – https://www.fortinet.com/blog/threat-research/evolution-of-malware
[35] – https://www.ibm.com/blog/malware-history/
[36] – https://www.giac.org/paper/gsec/2538/evolution-computer-virus/104385
[37] – https://www.fbi.gov/news/stories/morris-worm-30-years-since-first-major-attack-on-internet-110218
[38] – https://en.wikipedia.org/wiki/Morris_worm
[39] – https://www.hypr.com/security-encyclopedia/morris-worm
[40] – https://www.hypr.com/security-encyclopedia/morris-worm
[41] – https://www.okta.com/identity-101/morris-worm/
[42] – https://securityintelligence.com/articles/how-morris-worm-changed-cybersecurity/
[43] – https://www.flashpoint.io/blog/the-history-and-evolution-of-ransomware-attacks/
[44] – https://www.techtarget.com/searchsecurity/feature/The-history-and-evolution-of-ransomware
[45] – https://spin.ai/blog/the-history-and-evolution-of-ransomware/
[46] – https://www.flashpoint.io/blog/the-history-and-evolution-of-ransomware-attacks/
[47] – https://www.crowdstrike.com/cybersecurity-101/ransomware/history-of-ransomware/
[48] – https://spin.ai/blog/the-history-and-evolution-of-ransomware/
[49] – https://securityintelligence.com/articles/how-morris-worm-changed-cybersecurity/
[50] – https://www.esecurityplanet.com/threats/computer-viruses-and-malware-history/
[51] – https://www.ifsecglobal.com/cyber-security/a-history-of-information-security/
[52] – https://uk.norton.com/blog/malware/famous-computer-viruses
[53] – https://docs.google.com/document/d/1kUELoYvrgFysldk-Wh9n9HKliOMyR797lSJTPw4WY2Q/edit
[54] – https://medium.com/@amikyle532/evolution-and-impact-of-computer-viruses-1d4cb364d207
[55] – https://www.giac.org/paper/gsec/2538/evolution-computer-virus/104385
[56] – https://wenke.gtisc.gatech.edu/worms-readings/Nachenberg_EvolvingVirusThreat.pdf
[57] – https://study.com/academy/lesson/evolution-of-computer-virus-technology.html
[58] – https://www.fortinet.com/blog/threat-research/evolution-of-malware
[59] – https://www.open.edu/openlearn/ocw/mod/oucontent/view.php?id=48320&printable=1