Security Advisory:

Resurgence in Emotet Malware

22 July 2020

There has been a resurgence in the Emotet malware after a five-month hiatus.  The new campaign primarily targets users in the US and UK using malicious attachments in phishing emails. 

Emotet is designed to download and deploy further malware to victim machines.  It uses a test-driven approach to tailor the attack to the victim’s estate, making it highly effective.  Some observed behaviours include credential theft, mounting further phishing campaigns, and deploying ransomware. 

We advise:

  1. Ensure users are aware of the potential threat.
  2. Review policies on sending and handling email attachments.
  3. Ensure antivirus is running and up to date.