Ransomware known as Bad Rabbit has hit Russia, Ukraine and other Eastern European countries. The ransomware is primarily targeting corporation’s systems and has affected Odessa International Airport, the Kiev Metro, several Russian media outlets and others, with systems becoming encrypted and displaying a ransom message.
“Our researchers have detected a number of compromised websites, all news or media sites,” Kaspersky said. “Based on our investigation, this is a targeted attack against corporate networks, using methods similar to those used in the ExPetr attack. However, we cannot confirm it is related to ExPetr.”
Once a computer is infected, the above ransom message appears demanding that the user pays .05 bitcoins (around €236) within 41 hours to decrypt the data. The message says that the ransom will increase if this period elapses without payment.
Security researchers have come up with an early vaccine to prevent Bad Rabbit from encrypting machines.
Vaccination for the Ukraine round 2? Wanna stop #badrabbit?
Create a file called c:\windows\infpub.dat and remove all write permissions for it. This should keep the malware from encrypting. Testing it now… pic.twitter.com/3MSSH8WKPb
— Amit Serper WWHF (@0xAmit) October 24, 2017
Boost awareness in your organisation
You shouldn’t make your organisation’s security awareness programme a simple tick-box exercise. Instead, you need to engage your staff with a variety of learning methods, such as the ones we offer in our Security Awareness Programme.
This programme helps you create tangible and lasting improvements to your organisation’s security awareness. It combines a learning needs assessment to identify the areas that your organisation should focus on with a series of tools and services to address the problems that arise. These tools and services include hands-on support from a specialist consultant, pocket guides and e-learning courses.