• TREND MICRO
  • ABOUT
Search:
  • Latest Posts
  • Categories
    • Android
    • AWS
    • Azure
    • Cloud
    • Compliance
    • Critical Infrastructure
    • Cybercrime
    • Encryption
    • Financial Services
    • Government
    • Hacks
    • Healthcare
    • Internet of Everything
    • Malware
    • Microsoft
    • Mobile Security
    • Network
    • Privacy
    • Ransomware
    • Security
    • Social Media
    • Small Business
    • Targeted Attacks
    • Trend Spotlight
    • Virtualization
    • Vulnerabilities
    • Web Security
    • Zero Day Initiative
    • Industry News
  • Our Experts
    • Ed Cabrera
    • Rik Ferguson
    • Greg Young
    • Mark Nunnikhoven
    • Jon Clay
    • William “Bill” Malik
  • Research
Home   »   Consumer   »   Bad Rabbit Ransomware – What is it and how to stay safe

Bad Rabbit Ransomware – What is it and how to stay safe

  • Posted on:October 27, 2017
  • Posted in:Consumer, Ransomware, Security
  • Posted by:
    Trend Micro
0

Trend Micro is tracking multiple reports of ransomware infections, known as Bad Rabbit, in many countries around the world. A suspected variant of Petya, Bad Rabbit is ransomware—malicious software that infects a computer and restricts user access to the infected machine until a ransom is paid to unlock it. We want to assure you that the latest version of Trend Micro Security provides effective protection against this ransomware attack.

 

What is BadRabbit and how does it work?

BadRabbit spreads via fake Adobe Flash updates, tricking users into clicking the malware by falsely alerting the user that their Flash player requires an update. BadRabbit incorporates the use of Mimikatz to extract credentials (an open source tool that has been used in previous attacks) to extract common hard-coded credentials such as Admin, Guest, User, root, etc. There is also evidence that BadRabbit ransomware is using a legitimate tool — DiskCryptor — to encrypt the victim’s data.

Once the victim’s PC is infected and their data encrypted, BadRabbit reboots the system and the following message is displayed after reboot:

Based on our initial analysis, Bad Rabbit spreads to other computers by dropping copies of itself over the network.

Trend Micro Security customers can take to ensure  they’re protected from BadRabbit:

1. Make sure you are using the latest version of Trend Micro Security. You can check here if you already have the latest version or follow instructions here to upgrade Trend Micro Security to the latest version. Upgrades to the latest version of Trend Micro Security are free.

Read: How Can Trend Micro Security protect me from Ransomware?

2. Make sure your Trend Micro Security has the latest Security and Program updates. You can check here to manually update your Trend Micro Security.

Trend Micro Security

Trend Micro Security provides online protection against malware and ransomware using advanced machine learning- based technology. so you can enjoy your digital life safely. It helps protect you from identity theft, viruses, phishing, online scams, and more.

Trend Micro Security keeps your valuable files safe from ransomware with Folder Shield, by allowing only authorized applications to access the protected folders such as your documents, photos, music, and videos. Folder Shield can even protect cloud- synced folders such as Dropbox, Google Drive, and Microsoft OneDrive.

Learn more at trendmicro.com

Related posts:

  1. Ransomware is Here to Stay: So How Do I Protect My Data?
  2. Sochi 2014: How to stay safe on the cyber slopes of the web during the Games
  3. How to Stay Safe Online this Cyber Monday
  4. Two-Factor Authentication: What is it and why do I need it to stay safe online?

Security Intelligence Blog

  • Our New Blog
  • How Unsecure gRPC Implementations Can Compromise APIs, Applications
  • XCSSET Mac Malware: Infects Xcode Projects, Performs UXSS Attack on Safari, Other Browsers, Leverages Zero-day Exploits

Featured Authors

Ed Cabrera (Chief Cybersecurity Officer)
Ed Cabrera (Chief Cybersecurity Officer)
  • Ransomware is Still a Blight on Business
Greg Young (Vice President for Cybersecurity)
Greg Young (Vice President for Cybersecurity)
  • Not Just Good Security Products, But a Good Partner
Jon Clay (Global Threat Communications)
Jon Clay (Global Threat Communications)
  • This Week in Security News: Cybercriminals Distribute Backdoor with VPN Installer and New ‘Alien’ Malware can Steal Passwords from 226 Android Apps
Mark Nunnikhoven (Vice President, Cloud Research)
Mark Nunnikhoven (Vice President, Cloud Research)
  • Twitter Hacked in Bitcoin Scam
Rik Ferguson (VP, Security Research)
Rik Ferguson (VP, Security Research)
  • The Sky Has Already Fallen (you just haven’t seen the alert yet)
William
William "Bill" Malik (CISA VP Infrastructure Strategies)
  • Black Hat Trip Report – Trend Micro

Follow Us

Trend Micro In The News

  • Trend Micro Achieves AWS Outposts Ready Designation to Deliver Seamless Hybrid Cloud Security
  • Trend Micro Study Finds 39% of Employees Access Corporate Data on Personal Devices
  • Trend Micro Premium Security Suite Adds Key Feature to Tackle Identity Theft
  • Trend Micro Customizes Extended Detection and Response for the Channel Serving the Cybersecurity Needs of Small and Medium Businesses
  • Trend Micro Research Finds Both On-Premise and Cloud-based Servers Compromised by Criminal Underground
  • Home and Home Office
  • |
  • For Business
  • |
  • Security Intelligence
  • |
  • About Trend Micro
  • Asia Pacific Region (APAC): Australia / New Zealand, 中国, 日本, 대한민국, 台灣
  • Latin America Region (LAR): Brasil, México
  • North America Region (NABU): United States, Canada
  • Europe, Middle East, & Africa Region (EMEA): France, Deutschland / Österreich / Schweiz, Italia, Россия, España, United Kingdom / Ireland
  • Privacy Statement
  • Legal Policies
  • Copyright © 2017 Trend Micro Incorporated. All rights reserved.