A new ransomware known as Bad Rabbit has been observed spreading in the wild throughout Russia, Ukraine and several other countries. Remarkably similar to Not-Petya, Bad Rabbit was initially spread via drive-by downloads, but also contains the ability to propagate via SMB, as well as encrypting files and preventing an infected system from booting properly. Once it is active within an organization it will typically spread successfully and rapidly.
This is a Security Bloggers Network syndicated blog post authored by Cylance Blog. Read the original post at: Cylance Blog