EXECUTIVE SUMMARY:
Hours ago, reports of a new ransomware called Bad Rabbit, a Petya variant, began to emerge. Initial targets were three Russian media outlets. Ukraine was also getting hit with cyberattacks this morning, specifically Odessa Airport and the Kiev metro system. While authorities were unsure at first, it is now believed that the attacks are related.
The payment demand is 0.05 Bitcoin (approximately $282), according to Motherboard, to be paid by logging into a Tor hidden service website. Like the NotPetya ransomware, victims see red letters against a black background when Bad Rabbit strikes.
Steve Ragan from CSO reports, “According to an ESET researcher, BadRabbit is spreading via fake Flash updates and incorporatesĀ Mimikatz, an open source post-exploitation tool that helps attackers get a better foothold on a computer or network.”
Read the full story at CSO.
