Cybereason, creators of the leading Cyber Defense Platform, today announced that its Nocturnus researchers have made available a Free Emotet-Locker Tool to help organizations defend against a surge in Emotet malware attacks. The Emotet-Locker tool can be downloaded here:Cybr.ly/emotet. Emotet-Locker will prevent certain variants of Emotet on Windows machines.
According to DHS’s Cybersecurity and Infrastructure Security Agency (CISA), Emotet infections can cost local and state governments up to $1 million per incident in remediation costs. Cyberscoop reported on Monday that Berlin’s highest court was recently victimized by an Emotet attack with lasting damage and a recommendation that the court rebuild its entire network.
Emotet Malware Explanation
Emotet was first identified as early as 2014 as a trojan used to steal banking credentials. Since then, its capabilities have evolved significantly into a type of modular malware. Because of its modular nature and the practicality of Emotet’s distribution features, it is often used by attackers to gain a foothold in a target environment.
Emotet’s main infection vector is through phishing attacks, which use email with malicious links, attached PDFs, or Macro-embedded Microsoft Word files to spread. Once deployed, Emotet can launch different malware payloads based on the target machine and its goal. In recent years, it has become one of the most commonly employed commodity malware.
Cybereason’s Nocturnus researchers recently released the ‘Triple Threat’ research report with details of a nefarious campaign combining Emotet, TrickBot, and Ryuk that poses significant risk for victims. It shows how attackers are becoming more daring and opting to combine multiple types of malware to achieve maximum damage.
This campaign again originates from a phishing attack. The use of phishing to perpetrate a widespread attack continues to be a leading issue. This will continue to be an effective attack vector until we are able to prevent human manipulation in phishing attacks.
Cybereason, creators of the leading Cyber Defense Platform, gives the advantage back to the defender through a completely new approach to cybersecurity. Cybereason offers endpoint prevention, detection and response and active monitoring. The solution delivers multi-layered endpoint prevention by leveraging signature and signatureless techniques to prevent known and unknown threats in conjunction with behavioral and deception techniques to prevent ransomware and fileless attacks. Cybereason is privately held and is headquartered in Boston, with offices in London, Sydney, Tel Aviv, Tokyo, Asia-Pacific and continental Europe.
Learn more: https://www.cybereason.com/
Senior Director, Global Public Relations