Emotet Tactic May Presage More Rapid Ransomware Infections
Gov Info Security
Mathew J. Schwartz
Notorious Emotet malware has been dropping an advanced network penetration tool directly onto infected endpoints, in a likely bid to more rapidly infect them with ransomware, some experts warn.
Malware research group Cryptolaemus on Wednesday announced that it's been seeing Emotet infecting systems and then immediately acting as a loader to install Cobalt Strike penetration-testing software onto the endpoints.