• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to footer
  • Jobs
  • Career
    • Cyber Security Training
    • Work from Home
    • Cyber Security Analyst
    • Remote Work – Six Ways to Keep Your Data Safe When Working Remotely
  • Field Guide
  • Newsletter Signup
  • Deals
  • News
AskCyberSecurity.com

AskCyberSecurity.com

Cyber Security News & Information

  • Home
  • Data Privacy
    • Gamers
    • Government Cyber Security
      • Legislation
      • Standards
        • What are the risks of computer security?
        • Medical Cyber Security
    • Social Media
  • Security
    • Data Breaches
    • Scams
    • Malware
  • Software
    • Apps
    • Web Browsers
  • Glossary
    • Cyber Security Acronyms
  • About Ask Cyber Security
    • Authors
    • Contact Us
  • VPN
    • How Do I Know If My VPN is Working?
    • Best Free VPN iPhone
    • Why Use a VPN?
    • NordVPN vs IPVanish
    • Private Internet Access Download
    • Best VPN for Streaming
      • TikTok VPN
    • VPN Porn
    • Computer Security Software – What You Really Need
  • Tutorials
  • ChatGPT
    • Does ChatGPT Save Data?
AskCyber Home » News » News » Emotet Malware Phishing Spoofs DNC

Emotet Malware Phishing Spoofs DNC

2020-10-02 by Michelle Dvorak

Emotet Malware DNC

Email phishing attack impersonates Democratic National Convention’s Team Blue initiative

Hundreds of organizations and thousands of volunteers in the United States were spammed with malicious emails attempting to spread a new round of Emotet malware. The malware attack impersonates the Democratic National Convention (DNS) Team Blue initiative. Each spam email contains a malicious Microsoft Word document. If the recipient opens the attachment and has macros enabled, malware infects their computer.

Emotet malware attacks are notorious for the high recovery costs associated with their damage. Some of these attacks have cost organizations up to $1 million USD to remediate.

“The shift to using politically themed lures comes days after the first of several 2020 U.S. presidential debates,” said researchers.

Emotet malware is one of the most costly and destructive malwares currently attacking state, local, tribal, and territorial governments as well as businesses in the private and public sectors

Yesterday, phishing emails using wording taken word-for-word from the DNC Team Blue webpage were sent to hundreds of organizations in the United States. The malicious emails contained an attached Word doc. File names varied and included names such as “Team Blue Take Action.doc” ,  “List of works.doc”, “Valanters 2020.doc”,  “Detailed information.doc”, and “Volunteer.doc” says a report from security researchers at Proofpoint.

Phishing email subject lines varied and included “Team Blue Take Action”, “Valanters 2020”, “Detailed information”, “List of works”, “Volunteer”, and “Simply Information.” 

”Team Blue Take Action” lure containing malicious Word doc attachment
”Team Blue Take Action” lure containing malicious Word doc attachment (Credit: Proofpoint)

The body of the email prompts the recipient to open the attachment. If the recipient has macros enabled on their computer, the malicious word doc will infect their machine with Emotet malware.

READ: DHS Warns of Increased Emotet Malware Attacks

Emotet malware

Emotet malware is a banking Trojan. It spreads primarily via malicious email attachments and was originally used to commit banking fraud. The attackers have expanded to spamming, stealing login credentials, and email harvesting as well as downloading other malware.

Emotet Malware Attacks 

In January 2020, the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) warned of increasing targeted Emotet malware attacks on public and private sector businesses.

In June, the US Federal Bureau of Investigation (FBI) issued a public service announcement warning to consumers to be vigilant with the use of mobile banking apps. Cyber criminals are increasingly using imposter banking apps containing Emotet malware to steal bank login credentials.

READ: FBI Warns of Increased Mobile Banking App Cyber Attacks

Recently Emotet malware was delivered in phishing emails using COVID-19 related messaging, virus related news, current events, and even activist Greta Thunberg messaging.

The attackers behind Emotet malware, TA542, do not typically go after political targets. The spam emails used to spread the malware contain malicious Microsoft Word email attachments or links to Word documents. Emotet is was first used to infect devices with banking malware. It  has also been used as a trojan to download Qbot, The Trick, IcedID, and Gootkit malwares.

Cyber security researchers at Proofpoint reported that nearly a quarter million Emotet messages were sent on July 17, 2020,

How to Help Stop Malware from Infecting Your Computer

  • Disable macros on your computer. you don’t need this capability, then shut it off. Many malwares depend on it for auto-executing their malicious code.
  • Never click on an email attachment that you were not expecting – even if you think you know the sender. Hackers can steal email logins and use them to spam thousands of people with malware.
  • When in doubt, call the email sender and ask if they sent an attachment
  • Protect your computer and phone with an antimalware and antivirus app

Filed Under: News Tagged With: Emotet

About Michelle Dvorak

Michelle writes about cyber security, data privacy focusing on social media privacy as well as how to protect your IoT devices. She has worked in internet technology for over 20 years and owns METRONY, LLC. Michelle earned a B.S. in Engineering from Rensselaer Polytechnic Institute. Michelle published a guide to Cyber Security for Business Travelers


LinkedInTwitterFacebook

Primary Sidebar

Subscribe to Our Free Newsletter

We Don't Share or Sell Your Info

Web Browsers

Where Are My Saved Passwords in Chrome?

Google Removes 70 Malicious Browser Add-ons from Chrome Web Store

Firefox 75 Reports Your Browser Settings to Mozilla

Categories

Cyber Security Field Guide

Computer Security While TravelingGet Our Cyber Security Field Guide - Available on Amazon!

Recent Posts

Security Marketing Manager – Remote

Sr. Associate, Cybersecurity Architect – Pfizer

Strategic Customer Success Manager – Cybersecurity – Opportunity for Working Remotely

Top 20 Passwords Leaked on Dark Web

ISU Cybersecurity Leader Job Opening

Cyber Security News

Top 20 Passwords Leaked on Dark Web

… [Read More...] about Top 20 Passwords Leaked on Dark Web

Apple Warns of Actively Exploited Zero-Day Flaw

… [Read More...] about Apple Warns of Actively Exploited Zero-Day Flaw

IRS Stops Facial Recognition System for Online Access

… [Read More...] about IRS Stops Facial Recognition System for Online Access

National Cybersecurity Alliance Announces Data Privacy Week

… [Read More...] about National Cybersecurity Alliance Announces Data Privacy Week

More Cyber Security News

Tags

amazon Android Apple bitcoin China chrome CISA credit card DarkSide DHS DOJ Equifax Europe Facebook facial recognition FBI Firefox FTC games GDPR Google Government hacker identity theft India iPhone Iran IRS LinkedIn Microsoft North Korea PayPal phishing phishing email ransomware REvil Russia smartphone T-Mobile TikTok tutorial VPN WhatsApp WiFi Windows

Government

CBP Looks to Access Airline Passenger Data

FTC Releases Cyber Threat Video Playlist

Malware Found on US Government Funded Phones

UK NCA Reaches Out to Youth to Deter Cybercrimes

More Posts from this Category

Footer

Menu

  • Home
  • About
  • Authors
  • Newsletter Signup
  • PRIVACY POLICY

Search

Why Use a VPN?

NordVPN vs IPVanish VPN Review

NAVIGATION

  • Data Breaches
  • Data Privacy
  • Gamers
  • Scams
  • Malware

MEMBER NJCCIC

New Jersey Cybersecurity & Communications Integration Cell

STAY CONNECTED

  • Facebook
  • Instagram
  • Pinterest
  • YouTube
  • Twitter
  • RSS

Copyright © 2023 · AskCyberSecurity.com · METRONY, LLC

Go to mobile version