New Ransomware Bad Rabbit sweeps Eastern Europe

Ransomware known as Bad Rabbit has hit Russia, Ukraine and other Eastern European countries. The ransomware is primarily targeting corporation’s systems and has affected Odessa International Airport, the Kiev Metro, several Russian media outlets and others, with systems becoming encrypted and displaying a ransom message.

According to cyber security researchers ESET and Kaspersky, the authors of Bad Rabbit have ties with the NotPetya ransomware attack that spread earlier this year. Bad Rabbit is distributed using the drive-by-download method, where a website’s HTML body or .js file is injected with JavaScript. When a user visits the site, a pop-up appears instructing them to update their Flash Player and thereby tricking the victim into downloading the malware.

“Our researchers have detected a number of compromised websites, all news or media sites,” Kaspersky said. “Based on our investigation, this is a targeted attack against corporate networks, using methods similar to those used in the ExPetr attack. However, we cannot confirm it is related to ExPetr.”

Once a computer is infected, the above ransom message appears demanding that the user pays .05 bitcoins (around €236) within 41 hours to decrypt the data. The message says that the ransom will increase if this period elapses without payment.

Security researchers have come up with an early vaccine to prevent Bad Rabbit from encrypting machines.


Boost awareness in your organisation

You shouldn’t make your organisation’s security awareness programme a simple tick-box exercise. Instead, you need to engage your staff with a variety of learning methods, such as the ones we offer in our Security Awareness Programme.

This programme helps you create tangible and lasting improvements to your organisation’s security awareness. It combines a learning needs assessment to identify the areas that your organisation should focus on with a series of tools and services to address the problems that arise. These tools and services include hands-on support from a specialist consultant, pocket guides and e-learning courses.

Find out more about our Security Awareness Programme >>

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.