Saturday, May 3, 2025
Homecyber securitySudden Upsurge with Emotet Malware that Designed to Steal Login Credentials

Sudden Upsurge with Emotet Malware that Designed to Steal Login Credentials

Published on

SIEM as a Service

Follow Us on Google News

France, Japan, and New Zealand warn of a sudden spike with Emotet malware that steals login credentials from various browsers, email clients, and applications.

The malware was first observed in mid-2014 as a banking Trojan, later it upgrades as an advanced, self-propagating, and modular Trojan. It can be used to install other malware such as Trickbot and QBot onto a system.

Sudden Spike with Emotet

Authorities from France, Japan, and New Zealand observed a sudden spike with the Emotete malware infection targeting several companies and administrations.

- Advertisement - Google News

The malware is distributed through malicious email attachments or links to download the documents that appear like genuine invoices, financial documents, shipping information, resumes, scanned documents, or information on COVID-19.

JPCERT/CC observed a rapid increase in the number of domestic domain (.jp) email addresses that are abused and used to distribute the Emotet malware.

The main method of Emotet infection is attachments or emails with links in the body when the attachment gets executed it downloads the file from the link and users are recommended to activate the macro.

The malware steals account credentials, subject, and body data of emails from the infected and can use the stolen data to deliver spam emails.

According to JPCERT, the Emotet spam waves tripled last week and the infection rate is kept on increasing.

The Emotet is one of the most dangerous malware and it is capable of delivering payloads based on the specific tasks. It’s warm like capability helps to spread rapidly with other connected computers.

It is primarily distributed through social engineering techniques such as the emails with the links to download the malware.

You can follow us on LinkedinTwitterFacebook for daily Cybersecurity and hacking news updates.

Also Read

EmoCrash – Researchers Exploited a Bug in Emotet Malware to Stop its Distribution

New Wave of Emotet Malware Hacks Wi-Fi Networks to Attack New Victims

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

Hundreds of Fortune 500 Companies Have Unknowingly Employed North Korean IT Operatives

North Korean nationals have successfully infiltrated the employee ranks of major global corporations at...

Stealthy New NodeJS Backdoor Infects Users Through CAPTCHA Verifications

Security researchers have uncovered a sophisticated malware campaign utilizing fake CAPTCHA verification screens to...

State-Sponsored Hacktivism on the Rise, Transforming the Cyber Threat Landscape

Global cybersecurity landscape is undergoing a significant transformation, as state-sponsored hacktivism gains traction amid...

NVIDIA Riva AI Speech Flaw Let Hackers Gain Unauthorized Access to Abuse GPU Resources & API keys

Researchers have uncovered significant security vulnerabilities in NVIDIA Riva, a breakthrough AI speech technology...

Resilience at Scale

Why Application Security is Non-Negotiable

The resilience of your digital infrastructure directly impacts your ability to scale. And yet, application security remains a critical weak link for most organizations.

Application Security is no longer just a defensive play—it’s the cornerstone of cyber resilience and sustainable growth. In this webinar, Karthik Krishnamoorthy (CTO of Indusface) and Phani Deepak Akella (VP of Marketing – Indusface), will share how AI-powered application security can help organizations build resilience by

Discussion points


Protecting at internet scale using AI and behavioral-based DDoS & bot mitigation.
Autonomously discovering external assets and remediating vulnerabilities within 72 hours, enabling secure, confident scaling.
Ensuring 100% application availability through platforms architected for failure resilience.
Eliminating silos with real-time correlation between attack surface and active threats for rapid, accurate mitigation

More like this

Hundreds of Fortune 500 Companies Have Unknowingly Employed North Korean IT Operatives

North Korean nationals have successfully infiltrated the employee ranks of major global corporations at...

State-Sponsored Hacktivism on the Rise, Transforming the Cyber Threat Landscape

Global cybersecurity landscape is undergoing a significant transformation, as state-sponsored hacktivism gains traction amid...

Stealthy New NodeJS Backdoor Infects Users Through CAPTCHA Verifications

Security researchers have uncovered a sophisticated malware campaign utilizing fake CAPTCHA verification screens to...