BadRabbit: New ransomware emerges, but data recovery is possible

Security Digest Information security news and advice from TechTarget's network |November 1, 2017 FEATURED STORY Bad Rabbit ransomware data recovery may be possible by Michael Heller, Senior Reporter Security researchers found a way to recover data locked by the Bad Rabbit ransomware without paying, and others said money might not have been the driver of the attacks. (SearchSecurity.com) Advertisement NEWS   Warning for Equifax security issues came months before breach A security researcher reportedly disclosed a number of Equifax security issues to the company months before the major data breach, and none of the problems were fixed. (SearchSecurity.com)   Bad Rabbit ransomware attacks planned long ago The new Bad Rabbit ransomware spread through Russia and Ukraine, drawing comparisons to NotPetya, and researchers say the attacks were planned for a long time. (SearchSecurity.com)   Grossman: Cyberinsurance market is like the 'Wild West' Jeremiah Grossman, chief of security strategy at SentinelOne, talks with SearchSecurity about the value of cyberinsurance and why the rapidly growing market needs to mature. (SearchSecurity.com)   NSA cyberweapons report follows Kaspersky transparency plan A Kaspersky transparency initiative and a full code review of its products are on the way, and a new Kaspersky statement explained how NSA cyberweapons were uploaded to its servers. (SearchSecurity.com)   DUHK attack puts random number generators at risk News roundup: Researchers find DUHK attacks can get around encrypted communications. Plus, FBI Director Wray criticizes mobile device encryption, and more. (SearchSecurity.com)   Risk & Repeat: Is vulnerability marketing problematic? In this week's Risk & Repeat podcast, SearchSecurity editors discuss vulnerability marketing and compare how the recent KRACK attack and ROCA flaw were publicized and promoted. (SearchSecurity.com) EXPERT ADVICE   Windows XP patches: Did Microsoft make the right decision? Microsoft had to make several tradeoffs when developing patches for Windows XP. Expert Nick Lewis explains what these tradeoffs were and how enterprises should respond. (SearchSecurity.com)   How shared cloud security assessments can benefit enterprises Ensuring cloud security is a constant problem that shared cloud security assessments are trying to address. Learn about the benefits of sharing assessments with Nick Lewis. (SearchSecurity.com)   How Docker APIs can be misused to plant malware Researchers discovered how Docker APIs can be exploited to hide malware. Dave Shackleford explains the attack method and the threat it poses to container and virtual machines. (SearchCloudSecurity.com)   EternalRocks malware: What exploits are in it? When NSA cyberweapons went public, attackers bundled them into the EternalRocks malware. Nick Lewis takes a closer look at this new threat and explains what's lurking inside. (SearchSecurity.com) About This E-Newsletter This e-newsletter is published by the TechTarget network. To unsubscribe from Security Digest, click here. Please note, this will not affect any other subscriptions you have signed up for. TechTarget Security Media Group, 275 Grove Street, Newton, MA 02466. Contact: webmaster@techtarget.com Copyright 2017 TechTarget. All rights reserved.