Cyber security news for all

More

    Emotet attacks via email are constantly evolving

    Emotet attack has dominated the news for months. Victims also repeatedly include public institutions, universities and city administrations. Cyber ​​attacks already hit numerous cities in 2020. Municipalities have a large amount of personal information worth protecting and thus become the target of attackers.

    The Emotet attack wave is particularly destructive because it combines several types of malware, spreads using sophisticated methods and in the final step, reloads a ransomware that encrypts the systems of the attack victims. Ransomware is one of the biggest cyber threats for government agencies and businesses. This increased the number of threats by around 10 percent compared to the previous year.

    Emails Are The Most Important Vectors

    For many years, the most important vector of inspiration through which such attacks reach IT systems has been email. Over 90 percent of all cyber threats blocked last year companies and government agencies using malicious emails. In order to ward off such attacks, modern technical protective measures are particularly necessary.

    Sandboxing is one of the most effective technologies and corresponds to the state of the art for mail security. A sandbox is an area that is isolated from the rest of the system and in which software can be run in a protected manner. This allows the behavior of a program to be observed without endangering the rest of the system environment. In particular, the sandbox is able to open URLs in an email and to download and execute any content such as files and to check the impact on the operating system.

    It should be emphasized that Emotet steals emails from victims and uses them as templates for new coloring spam. It uses what is known as email thread hijacking, in which it replies to old email conversations with a malicious email. There is a high probability that emails from known conversation partners will be opened in existing conversations. As a result, Emotet’s distribution campaigns have been very successful.

    This type of attack is one of the main reasons why IT security officers have to invest in security awareness training to raise awareness of this threat.Emotet is also so dangerous because, in addition to its own email theft and computer misuse modules, it also delivers other malware, which can ultimately lead to infection. Even if you try to clean up the Emotet infection, additional malware can already run on the system. When a system becomes infected with Emotet, it becomes part of the Emotet botnet.

    Recent Articles

    Judge issues injunction against WeChat

    The US government wanted to take action against the app WeChat. A judge stood sideways. The app should disappear from the platforms in the...

    Mail provider Tutanota becomes target of cyber attacks

    Over the weekend, ongoing DDoS attacks and an infrastructure problem resulted in downtime for hundreds of users. While some were able to mitigate most...

    Amazon accounts are the new target of cyber criminals

    Amazon is a popular target for cyber criminals who want to exploit the trust and image of the company among its customers with emails....

    Hackers stole thousands of passport data in Argentina

    In response to millions of dollars ransom refused by the Argentine Immigration Service, a ransomware group released passport data from hundreds of thousands of...

    USA wants to improve cybersecurity of space systems

    CISA has published a table this week that summarizes Chinese activities against cybersecurity. Some attacks have succeeded and enabled hackers to gain a foothold...

    Related Stories

    Leave A Reply

    Please enter your comment!
    Please enter your name here

    Stay on op - Ge the daily news in your inbox