This year is not good for cybersecurity, unless you make a living off it, in the past 24 hours a new major ransomware attack has occurred. Named Bad Rabbit, it has hit networks in Russia, Ukraine, Turkey and Germany. Kaspersky Labs says that nearly 200 victims have been hit with the ransomware.
This has been confirmed by multiple other cybersecurity firms including ESET and Proofpoint, and they have stated that the attack was spread via a fake Adobe Flash update. And so far there have been reported cyber attacks on Russian media companies Interfax and Fontanka.ru. There have also been attacks on Ukraine’s Odessa airport, the Kiev subway and Ukraine’s Ministry of Infrastructure, though it’s not immediately clear if they’re all Bad Rabbit.
US officials said they had “received multiple reports of Bad Rabbit ransomware infections in many countries around the world”.
Bad Rabbit is requesting 0.05 bitcoin (just over $281) in order to regain access to their encrypted files and there is a 40-hour time limit on this before the price goes up. Kaspersky Labs said in a post that it can’t yet confirm that Bad Rabbit is related to NotPetya, which spread around the world earlier this year, but that it did use similar methods. However, ESET, a Czech Republic-based security company said that, like NotPetya, Bad Rabbit is a variant of the Petya ransomware. Petya, NotPetya and WannaCry all spread through multiple countries earlier this year.