F.A.Q.

Emotet Rampant: Make sure to patch office for macro protection!

Forum|Forum|3 years ago
May 27, 2022
4 replies
178 views

+25

TylerM
Sr. Security Analyst & Community Manager

An increase in attacks by Emotet has been observed. Emotet uses Excel 4.0 macros to execute payloads on systems running Microsoft Office to gain access, steal data and perform other malicious acts.

These attacks usually appear in the form of an email with an attachment asking the user to open the file and take further action. Emotet is part of an attack chain that can lead to compromised credentials, exfiltrated data and ransomware attacks.

This is the most common infection vector for Ransomware

The latest patches ensure that Excel 4.0 macros are disabled by default.

Please see more info here from Microsoft and CISA on our FAQ

+25

MajorHavoc
Bronze VIP
Forum|Forum|3 years ago
May 27, 2022

It was not clear. Does tis run on both Mac and Windows, or only effecting Windows machines?

- Owen Rubin,  Apple Expert. Worked in Vision Pro team and early Mac HW and OS engineer at Apple. Machines: 2017 iMac Pro 27" 5K 3GHz 10-Core Xenon Sonoma 14.x. 2023 14" MacBookPro M2 Max Ventura 13.x, 2018 16" MacBookPro Ventura 13.x, and a dozen or so older machines for testing. iPhone 14 Pro, iPhone 13 Pro, iPhone 6.

Like

+63

TripleHelix
Moderator
Forum|Forum|3 years ago
May 28, 2022

This dam bug is still around and causing Havoc! Right @MajorHavoc 😋

Daniel - Microsoft MVP Consumer Security (2012-2016) Windows 10 Pro x64 for Workstations 22H2 on my Alienware 17R2 and Windows 11 Pro x64 for Workstations on my Alienware 17R5 Laptops with Webroot SecureAnywhere Complete Beta Tester for PC & Android Samsung Galaxy A16 5G OS 16.