What you need to know about Emotet Malware

What you need to know about Emotet Malware

The current COVID-19 pandemichas given hackersaprime opportunity toget creativewhen it comes to inventing new waysofcirculatingmalicious code to steal your data.They’vegone to such measures as to recalibrate existing malware,reimagining it for newer, less exclusive malicious pursuits.Which is why you may have seenEmotet, originally a banking trojan, makinga comeback.
What is EmotetMalware?
In the current remote environment,Emotethas made its presence known once again, solidifying a spot for itself among this year’s top malware threats.
It started as a thorn in thebacksideof the banking industry,actingas an advanced,modular,and self-propagating Trojanthat disguised itself as legitimate looking banking software.Nowhackersare using itas a mass distributor of malicious campaigns and malware -targetingmore than justthe bankingindustry.Essentially,it’s been reborn as a true polymorphic code.
Emotet is a persistent and evasive malware that is skilled at avoiding detection. This makes it especially troublesome. One theory explains whyEmotet, an “old” malware, has been re-tooled in COVID-19-specific attacks. Its high success rate in evading signature-based AV/EDR tools is one reason.
HowdoesEmotetMalwareSpread?
Emotetis trojan malware spreads predominantly throughsketchyemail campaign (Malspam), and phishing emails with malicious attachments and links.
Of course, social engineering still plays a vital role inspreading it around.You may receive anEmotet-infected email from a legitimate-looking business, leveragingtempting language like “paymentdetails” and”yourinvoice”,etc.If it looks real enough, whywouldn’tyou click?That is what hackers are banking on.
Hackers have been known to hijack legitimate email addresses and send infected attachments and links to victim’s contact lists. The spread of infection has increased exponentially because recipients are more likely to click attachments that come from a trusted source.
Security experts can help you strengthen your Work-fromHome strategy
We understand that your IT team is busy trying to put out fires. Our Advisory Services Group can help you and your team find the best and most cost effective ways to protect your environment from threats likeEmotet. We are here to assist.
About Jason Smith
Jason Smith is the Security Consultant at Internetwork Engineering (IE). He has over 15 years of experience in IT Security & IT Security including finance, aerospace, defense, and retail. Connect with Jason via LinkedIn.
Get in touch with Jason Smith