Malware called BadRabbit is bouncing between networks in Russia, Ukraine, Turkey, and Bulgaria, demanding Bitcoin payment in exchange for decryption of files.
Reuters reports that Odessa airport (pictured above) and the metro system in Kiev, both in Ukraine, have been hit by the malware. Russian cybersecurity firm Group-IB says that at least three of the nation’s media organizations have been hit. Security researchers at ESET claim to have spotted instances of the attack in Bulgaria and Turkey. More attacks will no doubt be mentioned on Twitter as they're discovered.
In each case, users are presented with a black-and-red screen of text demanding a payment of 0.05 bitcoin (about $280, for now) in order for their files to be decrypted. A timer claims that the ransom will increase after 40 hours.
The BadRabbit ransomware appears to spread via a fake Adobe Flash Player installer, according to researchers at security firm Proofpoint, seemingly using a Windows flaw known as EternalBlue that was identified by and leaked from the NSA and has now been used in several malware attacks. Once on a computer, says a staff member of the security firm McAfee, BadRabbit can encrypt a bunch of common file types, including Microsoft Office documents and image files.
Sound familiar? Well, the attack carries many echoes of recent ransomware schemes, such as NotPetya and WannaCry. So far, though, opinion is divided over whether BadRabbit is connected to previous attacks: ESET says it may be a variant of not NotPetya, while Kaspersky says it can’t say with certainty.
One thing is for sure: like other recent malware attacks, it’s causing chaos for those who are hit. We’ll have to wait and see just how big the attack becomes.
This new data poisoning tool lets artists fight back against generative AI
The tool, called Nightshade, messes up training data in ways that could cause serious damage to image-generating AI models.
Rogue superintelligence and merging with machines: Inside the mind of OpenAI’s chief scientist
An exclusive conversation with Ilya Sutskever on his fears for the future of AI and why they’ve made him change the focus of his life’s work.
Data analytics reveal real business value
Sophisticated analytics tools mine insights from data, optimizing operational processes across the enterprise.
Driving companywide efficiencies with AI
Advanced AI and ML capabilities revolutionize how administrative and operations tasks are done.
Get the latest updates from
MIT Technology Review
Discover special offers, top stories, upcoming events, and more.