Here we are again. It seems like we can’t go two months without another cyber security incident or major malware/ransomware outbreak, whether it’s tech giants being hacked or corporations’ data being held hostage. This time however it comes in the form of yet another ransomware attack dubbed ‘Bad Rabbit.’
This particular piece of ransomware does not leverage any existing Operating System or software vulnerability such as Petya/NotPetya or WannaCry that came before, but instead relies upon malware in the form of a fake Flash updater in order to spread and infect.
Once infected and the system rebooted, users are presented with the ever more familiar ransom screen demanding bitcoin payments in exchange for the decryption key to recover their now encrypted files.
Luckily, there is an easy method already published to detect already compromised systems that haven’t yet rebooted, to fix those devices and to immunise all devices, affected or otherwise, against this attack.
Adaptiva customers that are already using the Adaptiva Client Health product, or any organisation that wishes to trial the product, will be able to leverage custom health checks that will detect and remediate all devices affected by this vulnerability and to vaccinate all corporate devices against this attack.
The health check will determine the current system health state by detecting the presence of the infected files and, if found, will remove them from the device.
In addition to this, whether the device is already compromised or not, immunization will be applied by preventing the infected files from ever being written going forward.
Both the health check and remediation are powered by the Adaptiva WorkFlow Designer and Engine which allows for easy customisation or extension.
The Adaptiva Client Health product is capable of easy extension to add support for future unknown security issues, quickly and easily without requiring any code changes or updates to the product itself. This provides a unique ‘always ready’ capability to react to any situation that may arise.
Workflows can be self-created or requested from the Adaptiva solutions team and imported directly into the designer. Once imported, they will self-deploy on-demand using the intelligent peer-to-peer content distribution system and execute upon all targeted devices.
This allows for an immediate reaction to a threat, a breach, or a cyber security incident without writing a single line of code or relying on a security patch that may take weeks to be released.
Existing Adaptiva Client Health customers can obtain a copy of this custom Bad Rabbit health check by contacting [email protected] Enterprises interested in seeing Client Health and this new health check in action can request a demo.