Still unclear: Who is behind those attacks? What we know at this point: The code shares many lines with Petya and doesn’t use the EternalBlue exploit. Badrabbit spreads across networks but uses fake flash updates to get into a system. To prevent your system from Badrabbit, Kaspersky Lab recommends to block the execution of the following file: ‚c: \ windows \ infpub.dat, C: \ Windows \ cscc.dat.‘
Read the whole article on ZDnet.