{"id":10145,"date":"2017-10-27T09:00:03","date_gmt":"2017-10-27T17:00:03","guid":{"rendered":"http:\/\/www.palada.net\/index.php\/2017\/10\/27\/news-3918\/"},"modified":"2017-10-27T09:00:03","modified_gmt":"2017-10-27T17:00:03","slug":"news-3918","status":"publish","type":"post","link":"http:\/\/www.palada.net\/index.php\/2017\/10\/27\/news-3918\/","title":{"rendered":"Bad Rabbit Ransomware \u2013 What is it and how to stay safe"},"content":{"rendered":"

Credit to Author: Trend Micro| Date: Fri, 27 Oct 2017 16:50:50 +0000<\/strong><\/p>\n

\"\"<\/p>\n

Trend Micro is tracking multiple reports of ransomware infections, known as Bad Rabbit, in many countries around the world. A suspected variant of Petya<\/a>, Bad Rabbit is\u00a0ransomware<\/a>\u2014malicious software that infects a computer and restricts user access to the infected machine until a ransom is paid to unlock it. We want to assure you that the latest version of Trend Micro Security provides effective protection against this ransomware attack.<\/p>\n

 <\/p>\n

What is BadRabbit and how does it work?<\/strong><\/p>\n

BadRabbit spreads via fake Adobe Flash updates, tricking users into clicking the malware by falsely alerting the user that their Flash player requires an update. BadRabbit incorporates the use of Mimikatz to extract credentials (an open source tool that has been used in previous attacks) to extract common hard-coded credentials such as Admin, Guest, User, root, etc. There is also evidence that BadRabbit ransomware is using a legitimate tool \u2014 DiskCryptor \u2014 to encrypt the victim’s data.<\/p>\n

Once the victim\u2019s PC is infected and their data encrypted, BadRabbit reboots the system and the following message is displayed after reboot:<\/p>\n

\"\"<\/p>\n

Based on our initial analysis, Bad Rabbit spreads to other computers by dropping copies of itself over the network.<\/p>\n

Trend Micro Security customers can take to ensure\u00a0 they\u2019re protected from BadRabbit:<\/p>\n

1. Make sure you are using the latest version of Trend Micro Security. You can\u00a0check here if you already have the latest version<\/a>\u00a0or follow instructions here to\u00a0upgrade Trend Micro Security to the latest version<\/a>. Upgrades to the latest version of Trend Micro Security are free.<\/p>\n

Read:\u00a0How Can Trend Micro Security protect me from Ransomware?<\/a><\/p>\n

2. Make sure your Trend Micro Security has the latest Security and Program updates. You can\u00a0check here to manually update your Trend Micro Security<\/a>.<\/p>\n

Trend Micro Security<\/strong><\/p>\n

Trend Micro Security provides online protection against malware and ransomware using advanced machine learning- based technology. so you can enjoy your digital life safely. It helps protect you from identity theft, viruses, phishing, online scams, and more.<\/p>\n

Trend Micro Security keeps your valuable files safe from ransomware with Folder Shield, by allowing only authorized applications to access the protected folders such as your documents, photos, music, and videos. Folder Shield can even protect cloud- synced folders such as Dropbox, Google Drive, and Microsoft OneDrive.<\/p>\n

Learn more at trendmicro.com<\/a><\/p>\n

http:\/\/feeds.trendmicro.com\/TrendMicroSimplySecurity<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

Credit to Author: Trend Micro| Date: Fri, 27 Oct 2017 16:50:50 +0000<\/strong><\/p>\n

\"\"Trend Micro is tracking multiple reports of ransomware infections, known as Bad Rabbit, in many countries around the world. A suspected variant of Petya, Bad Rabbit is\u00a0ransomware\u2014malicious software that infects a computer and restricts user access to the infected machine until a ransom is paid to unlock it. We want to assure you that the…<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[10378,10413],"tags":[10789,3765,714],"class_list":["post-10145","post","type-post","status-publish","format-standard","hentry","category-security","category-trendmicro","tag-consumer","tag-ransomware","tag-security"],"_links":{"self":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/10145","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=10145"}],"version-history":[{"count":0,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/10145\/revisions"}],"wp:attachment":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=10145"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=10145"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=10145"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}