After a major security update from Microsoft and a host of other systems, virus attacks have been halted, but it seems that it has not yet ended. A similar virus, known as the "bad rabbit", has been identified this time and has been widely known in a number of European countries, namely Russia, Ukraine, The number is high.
The virus has so far succeeded in attacking the Odessa airport and the Ukrainian Ministry of Transport. Metro Kiev and a group of Russian press institutions as well as in Turkey and Bulgaria at different levels.
The virus has so far succeeded in attacking the Odessa airport and the Ukrainian Ministry of Transport. Metro Kiev and a group of Russian press institutions as well as in Turkey and Bulgaria at different levels.
How does the virus spread?
According to several security reports, the new virus is spreading in an imaginary update of the flash program, and the virus comes with tools that help it move horizontally within the network, which may explain why it spread very quickly across many organizations, companies and countries in a short time. To servers and computers running on the same network via "SMB".
When the computer is infected with the virus, it first encrypts the files on the user's computer and replaces the MBR (Master Boot Record). When it does its job properly, it restarts the user's computer and shows you the malicious message that prompts you to go to the hacker's site. Push 0.05 configuration to retrieve your files.
How to protect yourself?
First, if you have a flash program on your computer, do not update it except from the official Adobe website, and if you see any message asking you to update the program do not do so.
Second, prevent the following extension from your device:
c: \ windows \ infpub.dat
c: \ Windows \ cscc.dat.
Thirdly, stop WMI services to prevent malicious software from spreading in your network.
