{"id":2383,"date":"2017-10-14T15:30:27","date_gmt":"2017-10-14T07:30:27","guid":{"rendered":"https:\/\/greycortex.hk\/?p=2189"},"modified":"2017-10-14T15:30:27","modified_gmt":"2017-10-14T07:30:27","slug":"greycortex-mendel-detects-badrabbit","status":"publish","type":"post","link":"https:\/\/greycortex.hk\/zh\/2017\/10\/14\/greycortex-mendel-detects-badrabbit\/","title":{"rendered":"GREYCORTEX MENDEL DETECTS BADRABBIT"},"content":{"rendered":"<div data-elementor-type=\"wp-post\" data-elementor-id=\"2383\" class=\"elementor elementor-2383\">\n\t\t\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-9b72294 elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"9b72294\" data-element_type=\"section\" data-e-type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-85f637c\" data-id=\"85f637c\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-976453d elementor-widget elementor-widget-text-editor\" data-id=\"976453d\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p>GREYCORTEX is happy to report that it is able to detect the BadRabbit ransomware. This ransomware appeared in Eastern Europe (Russia, Ukraine) but has begun to spread across several countries including South Korea, Poland, the Baltic, and regions. It uses an NSA-based exploit known as \u201cEternalRomance\u201d to enter networks and spreads by SMB port.<\/p><p>MENDEL is able to detect this ransomware in two different ways:<\/p><ul dir=\"ltr\"><li>MENDEL\u2019s integrated ruleset includes a rule specifically detecting the BadRabbit ransomware.<\/li><li>Independent from this IDS rule, MENDEL\u2019s advanced artificial intelligence and machine learning detects the ransomware\u2019s anomalous port sweep activity.<\/li><\/ul><p dir=\"ltr\">This detection capability demonstrates that MENDEL can identify unknown threats before rules are created in rules-based security tools. MENDEL provides network security teams vital extra time to protect their networks.<\/p><div class=\"embed-responsive embed-responsive-16by9\"><iframe class=\"embed-responsive-item\" src=\"https:\/\/www.youtube.com\/embed\/xLebOtdRHoI\" frameborder=\"0\" allowfullscreen=\"allowfullscreen\" data-mce-fragment=\"1\"><\/iframe><\/div><p dir=\"ltr\">\u00a0<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<\/div>","protected":false},"excerpt":{"rendered":"<p>GREYCORTEX is happy to report that it is able to detect the BadRabbit ransomware. This ransomware appeared in Eastern Europe (Russia, Ukraine) but has begun to spread across several countries including South Korea, Poland, the Baltic, and regions. It uses an NSA-based exploit known as \u201cEternalRomance\u201d to enter networks and spreads by SMB port. MENDEL [&hellip;]<\/p>","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_coblocks_attr":"","_coblocks_dimensions":"","_coblocks_responsive_height":"","_coblocks_accordion_ie_support":"","_crdt_document":"","advanced_seo_description":"","jetpack_seo_html_title":"","jetpack_seo_noindex":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[10],"tags":[11,15,18,12],"class_list":["post-2383","post","type-post","status-publish","format-standard","hentry","category-detection","tag-capabilities","tag-malware","tag-security","tag-video"],"jetpack_featured_media_url":"","jetpack_shortlink":"https:\/\/wp.me\/paZ0Rf-Cr","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/greycortex.hk\/zh\/wp-json\/wp\/v2\/posts\/2383","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/greycortex.hk\/zh\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/greycortex.hk\/zh\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/greycortex.hk\/zh\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/greycortex.hk\/zh\/wp-json\/wp\/v2\/comments?post=2383"}],"version-history":[{"count":0,"href":"https:\/\/greycortex.hk\/zh\/wp-json\/wp\/v2\/posts\/2383\/revisions"}],"wp:attachment":[{"href":"https:\/\/greycortex.hk\/zh\/wp-json\/wp\/v2\/media?parent=2383"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/greycortex.hk\/zh\/wp-json\/wp\/v2\/categories?post=2383"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/greycortex.hk\/zh\/wp-json\/wp\/v2\/tags?post=2383"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}