Home » Cyber Security Headlines: Emotet returns, Google helps with Cobalt Strike, Ticketmaster blames bots for Swift snafu

Publication date: November 29, 2022

Cyber Security Headlines: Emotet returns, Google helps with Cobalt Strike, Ticketmaster blames bots for Swift snafu

Share this content

Elevate provides this content for information purposes only. Please refer to the publication link to view the article in its original form.

Emotet returns with a malspam vengeance

The pernicious botnet returned on the scene in early November. Researchers last spotted it in action back in July. Researchers at Proofpoint report it’s being used as part of a massive malspam campaign, designed to deliver IcedID and Bumblebee malware payloads. Current volume from Emotet sits at hundreds of thousands of emails per day. Targets include the US, UK, Japan, Germany, Italy, France, Spain, Mexico, and Brazil. One sign that Emotet hasn’t kept up with the times, it’s attempting to lure users to click on maliciously Office documents, despite Microsoft disabling Office macros by default. To get around it, emails try to get victims to copy the file to a Microsoft Office Template location, where it would be trusted. Google publishes YARA rules for Cobalt Strike

The Google Cloud Threat Intelligence team published open-source YARA rules to help detect components of Cobalt […]

Click here to view original article: cisoseries.com

Contact Elevate today to learn more about Industry News

Elevate // +1 (888) 601-5351 // Monday to Friday 9am-6pm