WebsiteGear Logo Log In
New User? Sign Up
About | Contact | FAQ
  Home News Technology Internet Security Wednesday, August 12, 2020 
Add Press Release News | News Feeds Feeds | Email This News Email


Nuspire Security Researchers Discover 730% Increase in Emotet Activity
Tuesday, November 19, 2019

Nuspire's recent quarterly threat report highlights the return of Emotet activity throughout Q3.

COMMERCE, Mich., Nov. 11, 2019 /PRNewswire-PRWeb/ -- Managed Security Services Provider (MSSP), Nuspire today released its recent Quarterly Threat Landscape report that includes top Botnet, Malware and Exploit activity throughout the third quarter. The most prevalent activity identified in the report was Emotet, which had a 730% increase in activity in September after being in a near dormant state.

Emotet, a modular banking Trojan, has added additional features to steal contents of victim's inboxes and steal credentials for sending outbound emails. Those credentials are sent to the other bots in its botnet which are used to then transmit Emotet attack messages. When Emotet returned in September, it appeared with TrickBot and Ryuk ransomware to cause the most damage to a network.

"When we saw Emotet decline to a near dormant state in the second quarter, we knew it was only a matter of time until it would resurface with stronger and better tactics," said Matt Corney, Nuspire CTO. "This significant increase in Emotet activity is one of the most dangers malware botnets affecting the world today."

Also noted in the report;

    --  144% increase in activity correlates to TrickBot utilizing a feature
        called TrickBooster. This new addition gives TrickBot the ability to use
        the infected machine as a spam email bot. Once the victim receives the
        email lists the spam campaign begins operating from the victim's
        computer.
    --  113% increase in Hawkeye malware that is commonly sold on various
        hacking forums as a keylogger and stealer. This malware is typically
        delivered via malicious email campaigns that appear to be requesting
        invoices, bills of materials, order confirmations as well as other
        things related to normal corporate functions.
    --  Top 5 IoT attacks include OpenDreamBox, JawsDVR, Netcore, Netgear,
        D-Link.
    --  97% increase in Andromeda activity sourced from Asia and the Middle
        East.

"The return of Emotet is a prime example of how threats may lay dormant for a while and change their tactics and techniques," said Shawn Pope, Nuspire Senior Security Analyst. "Patching your systems and staying up to date on these changes is vital to preventing and detecting malicious threats like Emotet."

Data reported in Nuspire's Quarterly Threat Landscape Report correlates more than 90 billion logs across the company's 3,000 global network sensors. Customers enterprise and mid-sized businesses operating in the automotive, franchise, manufacturing, construction healthcare and financial services industries.

Nuspire's Quarterly Threat Report correlates and analyzes threats detected from July 2019 to September 2019. Download the complete report here: https://www.nuspire.com/resource-library/q3/.

About Nuspire
Nuspire is the Managed Security Services (MSS) provider of choice, delivering the greatest risk reduction per cyber-dollar spent. The company's 24x7 Security Operations Centers (SOCs) and managed detection and response (MDR) service combines award-winning threat detection and response technology with human intervention and analysis, providing end-to-end protection across the gateway, network and endpoint ecosystem. Nuspire pioneered distributed, managed security services within the enterprise and franchise market and today protects thousands of locations globally. For more information, visit http://www.nuspire.com and follow @Nuspire.

MEDIA CONTACT:
Brenna Schafer
Brenna.Schafer@nuspire.com
248-896-6169

SOURCE Nuspire



Email This News Email | Submit To Slashdot Slashdot | Submit To Digg.com Digg | Submit To del.icio.us Del.icio.us | News Feeds Feeds

RELATED NEWS ARTICLES
Nav Stage 2 Security Launches Voodoo 1.2.0 with ARM support | Aug 12, 2020
Nav New SANS Institute Reports Advocate for Remote Browser Isolation and Assess the Effectiveness of the Cyberinc Isla Isolation Platform | Aug 12, 2020
Nav Trend Micro Research Reveals Serious Vulnerabilities in Critical Industry 4.0-IT Interfaces | Aug 12, 2020
Nav United States General Services Administration Selects MetTel for Two Awards for Nationwide Data and Voice Services | Aug 12, 2020
Nav JumpCloud Extends Cloud Directory Platform with New Windows App to Simplify Credential Management & Combat Phishing Attacks | Aug 12, 2020
Nav DigiCert Announces New Multi-year Plan in DigiCert CertCentral® to Help Customers Simplify TLS Certificate Management Ahead of 1-Year Lifetime Requirements | Aug 12, 2020
Nav PossibleNOW Donates $20,000 to Feeding America in Honor of the Company's 20th Year Anniversary | Aug 12, 2020
Nav The PR World Awards® Issues Final Call for 2020 Public Relations, Business-Corporate Communications, Advertising, Marketing, and Investor Relations Nominations | Aug 12, 2020
Nav Easy Accessibility to Online Betting Helps Grow the Industry | Aug 8, 2020
Nav F-Secure and AirTies To Unite Service Providers' Favorite Security and Smart Wi-Fi Solutions | Aug 8, 2020
NEWS SEARCH

FEATURED NEWS | POPULAR NEWS
Submit News | View More News View More News