Emotet Returns to Hit 100K Mailboxes Per Day

[silversurfer]

Content source

https://threatpost.com/emotet-returns-100k-mailboxes/162584/

After a lull of nearly two months, the Emotet botnet has returned with updated payloads and a campaign that is hitting 100,000 targets per day.
“The Emotet botnet is one of the most prolific senders of malicious emails when it is active, but it regularly goes dormant for weeks or months at a time,” said Brad Haas, researcher at Cofense, in a Tuesday blog. “This year, one such hiatus lasted from February through mid-July, the longest break Cofense has seen in the last few years. Since then, they observed regular Emotet activity through the end of October, but nothing from that point until today.”
The botnet is also staying true to form in terms of payloads, researchers said. “In October the most common secondary payloads were TrickBot, Qakbot and ZLoader; today we observed TrickBot,” according to Haas.

Emotet Returns to Hit 100K Mailboxes Per Day

Just in time for the Christmas holiday, Emotet is sending the gift of Trickbot.

threatpost.com

Full report by researchers:

Emotet Returns with Updated Tactics | Cofense

Emotet is back for the holidays with updated tactics! Read about the latest C2 communication and infection chain in our blog.

cofense.com