A team of researchers from Check Point Research, a division of Check Point Software Technologies Ltd., published the Global Threat Index report with the most active threats in January 2020: the Emotet Trojan has been in the top malware category for four months. Experts said that in recent weeks, attackers have been using the coronavirus theme to send malicious emails.
Such letters promise to tell about the sources of the coronavirus and share more detailed information about it. If the user is interested and follows the link (or opens an attachment), the Emotet Trojan will be downloaded to their computer. Typically, Emotet is used as a distributor of ransomware or other malicious campaigns.
In January, the number of attempts to try the vulnerability “MVPower DVR remote code execution” also increased — it affected 45% of organizations worldwide. If successful, an attacker can remotely exploit this flaw to execute arbitrary code on the victim's device.
"The most common malware, such as Emotet, XMRig, and Trickbot affected more than a quarter of organizations in Russia over the past month, - said Vasily Diaghilev, Head of Check Point Software Technologies in Russia and the CIS - Attackers quickly adjust to the agenda: in December, they actively used the name of Greta Thunberg, now - the coronavirus epidemic. Therefore, it is important to regularly tell your employees about these methods of cybercriminals, and train them to see malicious emails immediately. You need to deploy security tools that prevent corporate networks from becoming infected."