The Department of Homeland Security's Cybersecurity and Infrastructure Security Agency (CISA) and the Multi-State Information Sharing & Analysis Center (MS-ISAC) have released a warning about an upsurge in malware campaigns using Emotet, a Trojan "dropper" that carries other malware to its victims.
According to the alert, CISA's EINSTEIN intrusion detection system has detected roughly 16,000 alerts related to Emotet activity on federal civilian executive branch networks since July. Current Emotet campaigns are tending to use weaponized Microsoft Word documents attached to phishing email messages to spread the malware. Emotet then employs a variety of shifting and evolving libraries and executable files to evade detection by malware protection systems.
Read more here.