The Emotet botnet is sending fake messages from Windows Update instructing recipients to update Microsoft Word. The botnet then deploys a malicious Word attachment to compromise the victim's system, send spam email, and deploy ransomware.
- Emotet has been sending out spam emails since mid-October pretending to be invoices, shipping information, COVID-19 data, updates on President Trump's health, purchase orders, and other scams.
- Emotet began as a banking trojan and evolved into a spamming and malware delivery service.
- Earlier this month, the Cybersecurity and Infrastructure Agency and the Multi-State Information Sharing and Analysis Center warned that they had seen a "significant increase" in Emotet phishing emails targeting state and local governments.