Get a Pentest and security assessment of your IT network.

News

CSE Malware ZLab Preliminary analysis of Bad Rabbit attack

The CSE Cybsec ZLab has conducted a preliminary analysis of the Bad Rabbit ransomware discovering interesting aspects of the attack. The malware remembers the notorious NotPetya basically for two characteristics: The behavior after the reboot with a particular ransom note (Figure 1) The Bad Rabbit leverages the open source library DiskCryptor in order to encrypt the user files. The ransomware propagates through drive-by download attacks, attackers infected many sites in Russia, Bulgaria, and Turkey. It launches a modified version of the imikatz tool to harvest the password stored on the victims host and reuse it to gain access to other machines.”]

Source: https://securityaffairs.co/wordpress/64741/malware/preliminary-analysis-bad-rabbit.html

Related posts
News

Ashley Madison 2.0 Hackers Leak 20GB Data Dump, Including CEO's Emails

News

Art of Twitter account hacking

News

Botnet authors use Evernote account as C&C Server

News

Canadian agency breached as hackers exploit CVE-2017-5638 flaw in Apache Struts 2