"US-CERT has received multiple reports of Bad Rabbit ransomware infections in many countries around the world. This suspected variant of Petya ransomware is malicious software that infects a computer and restricts user access to the infected machine until a ransom is paid to unlock it. US-CERT discourages individuals and organizations from paying the ransom, as this does not guarantee that access will be restored. Using unpatched and unsupported software may increase the risk of proliferation of cybersecurity threats, such as ransomware."
Bad Rabbit: Latest Updates
Updated 6:58 a.m. ET Wednesday, October 25: A Massachusetts researcher, apparently from Cybereason, says he has a vaccine to protect customers from Bad Rabbit. However, MSSP Alert has not independently confirmed whether the vaccine is legitimate.Updated 6:54 a.m. ET, Wednesday, October 25: Avast, the anti-virus security company, says Bad Rabbit has now spread to the United States, though details about specific attacks are hard to come by.The ransomware masqueraded as an update to Adobe Systems's Flash, and once downloaded it attempted to spread within victims’ networks, according to The Wall Street Journal. The attacks "do not utilize any legitimate Flash Player updates nor are they associated with any known Adobe product vulnerabilities,” an Adobe spokeswoman told The Journal. Updated Tuesday, October 24: Early victims apparently include the Interfax news service. According to an October 24 message on the Interfax site:"Interfax news services not available due to hacker attack
*** Interfax Group‘s servers have come under a hacker attack. The technical department is taking all measures to resume news services. We apologize for inconvenience."