Emotet Archives - Gridinsoft Blogs

Security News

Emotet Malware Operators Found a Bug in Their Bootloader

ByVladimir KrasnogolovyApril 26, 2022

Emotet malware operators have fixed a bug due to which, after opening a malicious document the system was not infected, and launched a phishing campaign again. Let me remind you, by the way, that at the end of last year we wrote that Microsoft patches Windows AppX Installer

Security News

TrickBot causes crashes on the machines when cybersecurity experts studying it

ByVladimir KrasnogolovyJanuary 27, 2022

TrickBot malware has received new features that make it more difficult to investigate and detect — for example, TrickBot has learned to crash the browser when suspicious manipulations are detected. TrickBot is one of the most famous and “successful” malware to

Security News

Microsoft patches Windows AppX Installer vulnerability that spreads Emotet malware

ByVladimir KrasnogolovyDecember 15, 2021

The latest of this year, December’s patch Tuesday brought fixes for six 0-day vulnerabilities in Microsoft products, including a bug in the Windows AppX Installer that uses Emotet malware to spread. Microsoft patched 67 vulnerabilities in its products this month, seven

Security News

Emotet now installs Cobalt Strike beacons

ByVladimir KrasnogolovyDecember 9, 2021

The researchers warn that Emotet now directly installs Cobalt Strike beacons on infected systems, providing immediate access to the network for attackers. Those can use it for lateral movement, which will greatly facilitate extortion attacks. Let me remind you that usually

Security News

In August, the updated Qbot Trojan first entered the top of the most widespread malware

ByVladimir KrasnogolovySeptember 15, 2020

Check Point has released its monthly Global Threat Index for August 2020. According to the researchers, the updated Qbot Trojan (aka QuakBot, Qakbot and Pinkslipbot) first entered the TOP of the most widespread malware in the world, where it took tenth place. Experts

Security News

Microsoft recommends Exchange administrators to disable SMBv1

ByVladimir KrasnogolovyFebruary 13, 2020

Microsoft strongly recommends administrators to disable the SMBv1 protocol on Exchange servers to protect against threats that exploit its vulnerabilities. Let me remind you that Microsoft has been implementing a systematic refusal to use the outdated SMBv1 for a long time.

Security News

Trojan Emotet is trying to spread through available Wi-Fi networks

ByVladimir KrasnogolovyFebruary 10, 2020

Binary Defense analysts noticed that the new version of the Emotet Trojan behaves like a Wi-Fi worm, as it tries to spread and infect new victims through Wi-Fi networks available nearby. Researchers say that to detect the nearest Wi-Fi networks, the malware uses wlanAPI.dll

ByVladimir KrasnogolovyJanuary 17, 2020

Check Point analysts prepared a traditional monthly report on the most active threats, the Global Threat Index. Greta Thunberg and Christmas became the most popular topics in spamming and phishing campaigns. For already three months, the Emotet Trojan has occupied one of the

Security News

Emotet topped the rating of the most common threats in 2019

ByVladimir KrasnogolovyDecember 27, 2019

Any.Run, an interactive service for automated malware analysis, has compiled a list of the 10 most common threats downloaded to this platform. The Trojan Emotet topped this 2019 threat rating. The top includes malware designed to steal all types of confidential information,

ByVladimir KrasnogolovyDecember 19, 2019

Check Point Research Team, Check Point® Software Technologies Ltd. (NASDAQ: CHKP), a global cybersecurity solutions provider, published the Global Threat Index report, listing the most dangerous malware of November 2019. Experts said that for the first time in three years, a