On Tuesday, Oct. 24, a new strand of ransomware named Bad Rabbit appeared in Russia and the Ukraine and spread throughout the day. It first was found after attacking Russian media outlets and large organizations in the Ukraine. The initial installer masquerades as a Flash update. Interestingly, this malware contains a list
of hardcoded Windows credentials, most likely to brute force entry into devices on the network.
How Can I Stop Ransomware Like Bad Rabbit?
General recommendations for everybody, regardless of their security vendor, include:
- Apply all patches to operating systems
- Protect endpoints with an up-to-date anti-virus solution
- Ensure firewall and end point firmware is current
- Implement a network sandbox to discover and mitigate new threats
- Deploy a next-generation firewall with a gateway security subscription to stop known threats