The Australian Cyber Security Centre (ACSC) has released an advisory on an ongoing, widespread Emotet malware campaign. In its advisory, ACSC notes the malicious emails used in this campaign are designed to spread across a variety of sectors in the Australian economy, including critical infrastructure providers and government agencies. The advisory provides indicators of compromise (IOCs) and recommendations to help organizations defend against Emotet. Read the advisory at ACSC.
WaterISAC and the DHS Cybersecurity and Infrastructure Security Agency (CISA) encourage their partners to review the ACSC advisory, as well as CISA’s own alert on the Emotet malware. WaterISAC also reminds its members that Emotet has been used in attacks against water and wastewater sector assets, such as to facilitate the Ryuk ransomware infection at the Onslow Water and Sewer Authority last year.