Emotet malware has been dropping an advanced network penetration tool directly onto infected endpoints, some experts warn. Malware research group Cryptolaemus on Wednesday announced it’s been seeing the malware infecting systems and then acting as a loader to install Cobalt Strike penetration-testing software onto the endpoints. Such tactics could mean decreased time for defenders to spot and respond to attacks before ransomware gets unleashed, one expert says. The Justice Department has said that individuals infected with the malware are often unaware.”]
Source: https://www.cuinfosecurity.com/emotet-tactic-may-presage-more-rapid-ransomware-infections-a-18090