Azerbaijan talks on Bad Rabbit ransomware's infecting state structures

Share
Azerbaijan talks on Bad Rabbit ransomware's infecting state structures

So far, Russian Federation is most badly hit by Bad Rabbit with over half the victims in that country, including the Moscow-based news agency Interfax, Reuters reported.

Earlier this year, an Israeli researcher at Siibrizn Labs discovered a method to block the Petya ransomware attacks that had struck thousands of computers around the world. "Our researchers have detected a number of compromised websites, all news or media sites". To be precise, a Ukrainian worldwide airport and three Russian media outlets have been hit by the new ransomware.

After infecting one machine in a network - one computer in an office, for example - Bad Rabbit can find any login details stored on the machine which it uses to spread to others, security researchers have claimed. "However, we can not confirm it is related to ExPetr".

According to ESET, anti-virus IT Security company, the Bad Rabbit follows similar attacks in May and June, infecting thousands of networks and eventually causing hundreds of millions of dollars in damages.

Bad Rabbbit appears to have some similarities to Nyetya, says Cisco Systems' Talos threat intelligence blog, "in that it is also based on Petya ransomware".

A new, potentially virulent wave of data-encrypting malware is sweeping through Eastern Europe and has left a wake of outages at news agencies, train stations, and airports, according to multiple security companies Tuesday.

At the moment Bad Rabbit appears to be contained to Europe with attacks being registered in Ukraine, Germany, Russia and Turkey as well. The malicious software was inserted into prominent Russian news media websites in order to spread the malware, Forbes reports.

The new strain of ransomware, dubbed Bad Rabbit, was first spotted on October 24. In this instance, the malware is disguised as an Adobe Flash installer. Keys are generated using CryptGenRandom and then protected by hardcoded RSA 2048 public key.

One thing that we can discern so far is the hackers behind the attacks seem to be Game of Thrones fans, as at least four scheduled tasks within the ransomware are named after the popular series (Viserion, Drogon, Rhaegal and GrayWorm).

The ESET experts said that the payment website is hosted on the Tor network, and the ransom note provided instructions to make the payment while displaying a countdown of 40 hours before the price of decryption increase. Kaspersky Labs notes that it is now investigating the ransomware and will post more information as it's available.

It is understood the ransomware was distributed with the help of drive-by attacks.

Experts argue that while investigators were focused on getting to the bottom of the ransomware infection, TeleBots could be quietly siphoning off data from sensitive targets.

Share

Advertisement

Related Posts

All WiFi users open to malware attack through WPA2 glitch
It's worth checking to see if your Wi-Fi router has a security update, but it's not necessary. Even secured websites , those with " https " in the URL, he warns, are not necessarily safe.

BlackBerry Announces The Motion With 4000 mAh Battery
It sports a 5.5-inch HD (720×1280 pixels) display with DragonTrail Glass protection and a physical home button below the display . Not too many details are know about the BlackBerry Motion , though if one goes by the leaks this will have a full touchscreen.

Aroldis Chapman Says He Accidentally Liked Post Calling Joe Girardi 'Imbecile'
But in Game 2 , Girardi's decision not to challenge a hit-by-pitch call allowed the Indians to overcome an 8-3 Yankees lead. With the score tied 2-2, the next batter stepped to the plate, hitting a drive to Yankees SS, Didi Gregorius .

Hell in the Cell: Shocking assist leads to McMahon's downfall
Smackdown Women's Championship title failed to change hands inspite of Charlotte Flair victory over current Champion Natalya. Dolph Ziggler: A flat match positioned in the buffer spot between the WWE Championship match and the main event .

LSU bounces back, wins at No. 21 Florida
The Tigers were coming off of a stunning 24-21 loss to Troy at home but managed to go on the road to pull off a big win. He also made plays with his legs, often refusing to slide and fighting for more yards on scrambles.

Derek Carr inactive although he pushed to play
The Baltimore Ravens took advantage of the Steelers loss thanks to their 30-17 road win over the Oakland Raiders Sunday afternoon. His two on Sunday gives him 25 for his career. "We've got time to turn it around but it's all about if we want it".

Myles Garrett got a sack on his first National Football League play
So instead of leading by double digits, the Browns went to the locker room at halftime trailing 3-0 after Catanzaro's long boot. Myles Garrett brings down Jets quarterback Josh McCown during the Browns' loss to the Jets on October 8 at FirstEnergy Stadium.

Universities must do more to support students' mental health
However, a new survey suggests that most people don't think their colleagues would react well to any mention of mental disorders. Mental Health in the Workplace is the focus of World Mental Health Day this year.

Newton may be getting his groove back for Panthers
Dickson had 152 yards in the first half alone, then added a 23-yard catch on Carolina's first possession of the third quarter. The first quarter seemed to relay the notion of how evenly matched these two teams are as both teams hit in a deadlock.

Dolphins beat Titans despite lackluster offensive performance
This game had fans booing and calling for backup QB Matt Moore and game reporters asking coach Gase about that at halftime. Ben Roethlisberger's performance has been a red flag and may keep the Pittsburgh offense in check, but with T.J.

© 2015 . All Rights reserved.