Beware Bad Rabbit Ransomware

Adobe Flash Installer picWe have been researching the latest ransomware threat, “Bad Rabbit.” According to cybersecurity experts, this malware is being distributed through compromised websites and is executed when the user clicks on a prompt to install the latest Adobe Flash update.

According to Wired.com:

If a person does click on the malicious installer – and given the number of Flash updates issued this is highly probable – their computer locks. The ransom note and payment page demands around $280 in Bitcoin and gives a 40-hour deadline for payments to be made. The DiskCryptor software is being used to encrypt hard-drives.

While this threat has primarily affected users in Russia, Ukraine, Turkey, and Germany, please be very careful if prompted to install an Adobe Flash update you did not initiate. Close your browser immediately without clicking on any other prompts. As always, contact us for assistance by calling 215-723-4881.

Ransomware Phishing Attack

Our Computer Solutions group has seen an increase in ransomware phishing attacks. This recent attack uses email attachments with fake resumes to infect computers and lock you out of all your computers locally and in shared locations. In order to protect your company, we recommend that you DO NOT open attachments that look anything like a resume being sent as a zipped (.zip file extension) file.

The attackers are getting very creative and make the emails appear rather legitimate. Therefore, if you are in the process of hiring at this time, we recommend that you request all resumes be submitted in pdf format. Along with that, have all applicants include the job listing they are submitting the resume for and their contact phone number in the body of the email they send. This extra information will enable you to determine the validity of the resume submission.

These days it is wise to take the time to consider the source and content of any email you receive, especially those with attachments or links to websites. Always remember to “think before you click.”

If you think you might already have an issue as a result of this latest attack, please contact us at 215-723-4881.