The Cybersecurity Team at Align is currently following a new ransomware threat on the rise, known as Bad Rabbit, that has already affected several organizations in Russia, Ukraine and Eastern Europe. This latest strain of malware has been compared to the infamous WannaCry and Petya attacks that affected organizations globally earlier this year.
The worldwide Bad Rabbit ransomware outbreak started Tuesday and froze computer systems in numerous countries. Bad Rabbit starts with social engineering, attacking websites and then imitating an Adobe Flash installer. The victim is instructed to click on an update for Adobe Flash Player, while the ransomware is downloaded to their machine in the background. The malware then encrypts all of the files on the system and replaces the master boot record. Bad Rabbit then demands from its victim a payment of 0.05 bitcoin, or about $275 within 40 hours.
According to Virus Total, many of the Antivirus solutions do not yet have a signature for this malware.
While Align has not discovered any reports of this new ransomware being delivered via phishing emails, we strongly recommend that everyone be extremely diligent before clicking on attachments.
In addition to being cautious when opening email attachments, we recommend immediately taking the following actions:
If you need assistance with patching, or any other security concerns, please do not hesitate to contact Align’s Cybersecurity Team at 800-877-9980 or cyber@align.com.