New research has found that the Emotet malware strain has increasingly been targeting the United State's government and military. 

The malware that spreads via email has been infecting organizations across the globe since as far back as 2014, but researchers at Cisco Talos recently discovered that the US government is the latest victim to compromised. 

The discovery was made by closely examining the patterns of outbound email associated with the malware. 

The malware's successful compromise of at least one US government employee snowballed into what researchers describe as a "rapid increase" in the number of infectious Emotet messages directed at the .mil and .gov TLDs in December 2019. 

The malware took a break during the holiday season but is back once again wreaking havoc. Cisco Talos claims that the upward trend in the number of messages directed at .mil and .gov has "continued into January 2020."

Emotet works by stealing someone's email, then impersonating the victim and sending copies of itself in reply. The malicious emails are sent through a network of stolen SMTP accounts. 

Recipients, fooled into thinking they are receiving a message from a friend or colleague, open the email and are in turn infected with Emotet. 

NNT suggests adopting CIS Control 8: Malware Defenses to defend against the threat of malware. Malware is a huge problem and it puts everyone at risk, so organizations are encouraged to adopt the security control early on in their security and compliance journey.  

The Most Powerful & Reliable Cybersecurity Products

change tracker gen7r2 logo

Change Tracker Gen 7R2: Complete configuration and system integrity assurance combined with the most comprehensive and intelligent change control solution available.

FAST Cloud logo

Fast Cloud: Leverage the world’s largest whitelist repository to automatically evaluate and verify the authenticity of file changes in real-time with NNT FAST™ (File Approved-Safe Technology)

vulnerability tracker logo

Vulnerability Tracker: The world’s only limitless and unrestricted vulnerability scanning solution with unparalleled accuracy and efficiency, protecting your IT assets on premises, in the cloud and mobile endpoints.

log tracker logo

Log Tracker: Comprehensive and easy to use security information & event log management with intelligent & self-learning correlation technology to highlight potentially harmful activity in seconds

Contact Us

Corporate Headquarters

6160 Warren Parkway, Suite 100
Frisco, Texas, 75034

Phone 1: 1-949-407-5125

Phone 2: 888-638-9749 (toll-free)

[email protected]

United Kingdom

5 New Street Square
London EC4A 3TW

Phone: +44 (0) 203 588 3023

 [email protected]
SC Magazine Cybersecurity 500 CSGEA Winners 2021 CIS benchmarking SEWP Now Certified IBM Security
Copyright 2023, New Net Technologies LLC. All rights reserved. 
NNT and Change Tracker are registered trademarks of New Net Technologies LLC.
All other product, company names and trademarks are the property of their respective owners.