Emotet is back!

Introduction

You are happy because an old acquaintance has contacted you again by e-mail. Attached to the e-mail is an Excel file. You are curious to see what your old friend has sent you. You immediately download the Excel file and open it.

What is Emotet?

The botnet in question is Emotet. Emotet has been known since 2014. This botnet was dismantled in January 2021. At least that’s what they thought. Europol was able to take over the infrastructure of the malware and thus remove it from the network. However, these efforts were apparently in vain, because on November 2, 2022 at 9:00 in Germany, security researchers were able to observe that spam emails with malware from the Emotet botnet were sent out

How it works.

Emotet proceeds by sending spam emails with a malicious Excel file. The email asks you to download and open the Excel file.

How you can protect yourself

First, you should make sure that the software on your system is up to date. So, if you need to update your operating system or email program, do it now. Antivirus software can also help detect the malware. The manufacturers have already updated their signatures and can thus protect you. For that, you should make sure that your antivirus software is up-to-date and running. You should also watch out for phishing. Always check the sender and open attachments only when you expect them. It’s best to only open attachments in a sandbox, if you’d like me to do a tutorial on this feel free to post it in the comments.

Sources

[1] https://www.bleepingcomputer.com/news/security/emotet-botnet-starts-blasting-malware-again-after-5-month-break/

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Rabbit

Passionate about Cyber Security. I am publishing CTF Writeups and Cybersecurity Content!