Experts in the field of cybersecurity has discovered a way to protect themselves from the virus BadRabbit (“Bad rabbit”). He writes in his Telegram-the channel company Group-IB, it is necessary to create a file C:windowsinfpub.dat and put it the right “read-only”.
Experts promise that in this case, even when injected malicious code in computer files will not be encrypted.
Group-IB argues that BadRabbit used similar code with virus NotPetya, which in July this year struck a number of energy, telecommunications and financial companies.
23 Oct users from Russia and Ukraine attacked by virus-encoder Bad Rabbit, which locks your computer and requires 0.05 BTC (about 16 thousand) for the restoration of access to it. It was also reported about cases of infection in Germany and Turkey.
Virus ransomware has attacked the servers of “Interfax”, “Fontanka” and presumably other Russian media. The malware also invaded the work of the Ministry of infrastructure of Ukraine, State aviation service of Ukraine, computer systems of the Kiev metro, as well as information systems Odessa airport.
Background: the Russians and the Ukrainians attacked a new virus-the extortioner “Bad rabbit”