Emotet Lives!

Emotet malware has back to action after a four-month hiatus that allowed cybersecurity experts to worry about other things.

Dark Reading Staff, Dark Reading

July 18, 2020

1 Min Read
Dark Reading logo in a gray background | Dark Reading

In what sounds like the log line for a bad movie, Emotet is back. The most active malware threat of 2018 and 2019, Emotet went silent early in 2020. On July 17, though, it again reared its head in campaigns using URLs or attachments in email messages to launch PowerShell scripts that download Emotet's active components.

Those components then lie in wait until instructed by a command-and-control server to begin their malicious work -- tending to involve downloading and installing more active malware onto a victim's computer.

In the past year, that active malware has often been a form of ransomware, though Emotet networks are typically leased out to install the malware chosen by the criminal customer.

Read more here.

 

About the Author

Dark Reading Staff

Dark Reading

Dark Reading is a leading cybersecurity media site.

Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.

You May Also Like


More Insights