It's unclear who's behind the attack

[rakhirhif8963]

However, at this stage there is no obvious explanation as to why media organizations and infrastructure in Russia and Ukraine were specifically targeted.

It's unclear who's distributing this ransomware and why, but the similarities to Petya have led some researchers to believe that Bad Rabbit comes from the same group of attackers — although that doesn't help in finding either the attack's initiator or their motives, since the criminal who orchestrated the June outbreak hasn't been identified.

What makes the attack unique is that it mostly affected Russia. At the same time, Eastern European cybercriminal organizations usually avoid attacking their “home country,” so it is unlikely that a Russian group was behind this attack.

9. The malware contains references to Game of Thrones. Whoever is kenya mobile database Bad Rabbit seems to be a fan of Game of Thrones — the ransomware code contains references to the dragons Viserion, Drogon, and Rhaegal, which appear in the TV series and the novel it is based on. So the authors of the code are not trying to stray from the stereotype of hackers as geeks and nerds.

10. You can protect yourself from infection. It is not known at this stage whether files encrypted by Bad Rabbit can be decrypted without agreeing to pay the ransom, although the researchers say that victims of the attack should not pay money, as this only encourages ransomware to grow.

A number of security vendors claim that their products protect against Bad Rabbit. However, for those who want to protect themselves from possible attacks, Kaspersky Lab recommends blocking the execution of files named C:\Windows\infpub.dat and C:\Windows\cscc.dat to prevent infection.