SecuMail-Blog

  1. Home
  2. Uncategorized
  3. New Emotet – no problem for SecuMail either

New Emotet – no problem for SecuMail either

4. February 2022
By

After almost a year, there are again activities of the Emotet gang. Heise reports “a sharp increase in spam with malware attachments from Emotet botnets” (Heise, Z.1-2).

 

Scientists at Cryptolaemus detected a renewed high volume of spam from Emotet botnets last week.
The pattern remains the same. The fraudsters rely on the trust of a known sender, who sends the victim a supposed reply with an attached Office file. After opening the attachment, the user is prompted to activate the content. As soon as he executes this, the macros hidden in it become active and cause great damage. However, there is a piquant difference to before. In order to deceive e-mail filters and virus scanners, the new versions have new camouflage techniques.

 

Here is a recent example of an Emotet email that SecuMail® has filtered:

 

How can you protect yourself?

The SecuMail® awareness training shows you how to recognize Emotet emails. It also gives you other useful tips and tricks on what you should pay attention to in order to protect yourself and others in the area of e-mail communication. TO THE AWARENESS TRAINING

Since the first appearance of Emotet (2014), SecuMail® has protected you with several filter levels, which immediately detect and filter emails of this kind.

The following 3 filter checks must be passed by the e-mail, among others

  1. SecuMail® filters the email based on a password-protected archive.
  2. SecuMail® filters the mail based on the macros in the attachment file.
  3. The signature-based virus scanners (2-3 scanners) from SecuMail usually also work as soon as the signature is known.

The mail is already detected as malicious mail in filter levels 1 and 2 (components of the attack vector filter) and thus ends up in quarantine.

 

Let SecuMail® protect you from spam and malware. MORE ABOUT SECUMAIL FILTER

 

Source

https://www.heise.de/news/Emotet-Botnet-verstaerkt-Aktivitaeten-6340267.html

https://www.spiegel.de/netzwelt/web/emotet-die-gefaehrlichste-schadsoftware-der-welt-ist-zurueck-a-d0798d8a-8691-401e-a346-36acbc07ab82

https://www.bka.de/DE/IhreSicherheit/RichtigesVerhalten/StraftatenImInternet/FAQ/FAQ_node.html

 

Tags:
GDPR Cookie Consent with Real Cookie Banner