CERT mailing list archives

Multiple Ransomware Infections Reported

From: "US-CERT" <US-CERT () ncas us-cert gov>
Date: Tue, 24 Oct 2017 14:13:50 -0500

U.S. Department of Homeland Security US-CERT

National Cyber Awareness System:

Multiple Ransomware Infections Reported [
https://www.us-cert.gov/ncas/current-activity/2017/10/24/Multiple-Ransomware-Infections-Reported ] 10/24/2017 01:16 PM
EDT
Original release date: October 24, 2017

US-CERT has received multiple reports of Bad Rabbit ransomware [
http://www.us-cert.gov/security-publications/Ransomware ] infections in many countries around the world. Thissuspected
variant of Petya ransomware ismalicious software that infects a computer and restricts user access to the infected
machine until a ransom is paid to unlock it. US-CERT discourages individuals and organizations from paying the ransom,
as this does not guarantee that access will be restored. Using unpatched and unsupported software may increase the risk
of proliferation of cybersecurity threats, such as ransomware.

US-CERT encourages users and administrators to review US-CERT Alerts TA16-181A [
https://www.us-cert.gov/ncas/alerts/TA17-181A ] and TA17-132A [ https://www.us-cert.gov/ncas/alerts/TA17-132A ] that
describe recent ransomware events. Please report ransomware incidents to the Internet Crime Complaint Center (IC3) [
https://www.ic3.gov/default.aspx ]. US-CERT will provide updated information as it becomes available.

________________________________________________________________________

This product is provided subject to this Notification [ http://www.us-cert.gov/privacy/notification ] and this Privacy
& Use [ http://www.us-cert.gov/privacy/ ] policy.

________________________________________________________________________

A copy of this publication is available at www.us-cert.gov [ https://www.us-cert.gov ]. If you need help or have
questions, please send an email to info () us-cert gov. Do not reply to this message since this email was sent from a
notification-only address that is not monitored. To ensure you receive future US-CERT products, please add US-CERT ()
ncas us-cert gov to your address book.

OTHER RESOURCES: Contact Us [ http://www.us-cert.gov/contact-us/ ] | Security Publications [
http://www.us-cert.gov/security-publications ] | Alerts and Tips [ http://www.us-cert.gov/ncas ] | Related Resources [
http://www.us-cert.gov/related-resources ]

STAY CONNECTED: Sign up for email updates [ http://public.govdelivery.com/accounts/USDHSUSCERT/subscriber/new ]

Current thread:

Multiple Ransomware Infections Reported US-CERT (May 12)
- <Possible follow-ups>
- Multiple Ransomware Infections Reported US-CERT (Oct 24)