On the 24th October a new strain of ransomware named ‘Bad Rabbit’, which bears similarities to Wannacry and Petya, appeared on the internet. To date, the systems attacked have mostly been confined to Russia and Ukraine.
The ransomware is the third major spread of malware this year. The Bad Rabbit ransomware spreads through visiting legitimate insecure websites. In this instance, the malware is disguised as an Adobe Flash installer. When the innocent-looking file is opened it starts locking the infected computer. The Flash download has been installed in websites using JavaScript injected into the HTML or Java files of the affected websites. The malware isn’t installed automatically, which means it has to be clicked on to work.
The ransomware again targets Windows operations systems by exploiting multiple Windows SMB vulnerabilities.
At M247 we have validated that all our systems are protected. This means that we have ensured that all our IT Systems are up-to-date with the latest recommended patches.
Our team have also ensured that the M247 anti-virus definitions also include mitigation from the current threat and all endpoints are up-to-date.
We would like to reassure all our customers that have data residing on the M247 platform that this is fully patched. To help make sure all your systems are safe, please follow our tips below:
- Be careful of any links in your emails that could be harmful – do not click on them if you are unsure.
- Be wary of visiting unsafe of unreliable sites.
- Never click on a link that you do not trust on a web page or access to Facebook or messaging applications.
- Keep your files backed up regularly and periodically.
- Be aware of fraudulent email messages that use similar names to popular services e.g PayePal instead of PayPal.
- If you a receive a message from a friend with a link, ask them to confirm the link is safe before opening.
- Use anti-virus software and always have the latest update.
- Make sure you Windows system has the latest update.
If you have any further questions or would like further information on our MSecure services contact us today