all InfoSec news
Emotet Resumes Spam Operations, Switches to OneNote
March 22, 2023, 7:41 p.m. | Edmund Brumaghin
Cisco Talos Intelligence Group - Comprehensive Threat Intelligence blog.talosintelligence.com
- Emotet resumed spamming operations on March 7, 2023, after a months-long hiatus.
- Initially leveraging heavily padded Microsoft Word documents to attempt to evade sandbox analysis and endpoint protection, the botnets switched to distributing malicious OneNote documents on March 16.
- Since returning, Emotet has leveraged several distinct infection chains, indicating that
analysis botnets documents emotet endpoint endpoint protection evade infection malicious march microsoft microsoft word onenote operations protection resumes sandbox spam spamming switches threat advisory word
More from blog.talosintelligence.com / Cisco Talos Intelligence Group - Comprehensive Threat Intelligence
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Security Engineer, Infrastructure Protection
@ Google | Hyderabad, Telangana, India
Senior Security Software Engineer
@ Microsoft | London, London, United Kingdom
Consultor Ciberseguridad (Cadiz)
@ Capgemini | Cádiz, M, ES
Cyber MS MDR - Sr Associate
@ KPMG India | Bengaluru, Karnataka, India
Privacy Engineer, Google Cloud Privacy
@ Google | Pittsburgh, PA, USA; Raleigh, NC, USA