Emotet is still the world’s worst malware - but maybe not for long

Emotet operators seem to be taking a holiday

When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.

One of the world’s most infamous trojans/malware/droppers, Emotet, seems to be running out ofsteama little as the summer holidays begin.

Check Point Research’s recent Global Threat Index for July 2022 found Emotet’s global impact, compared to June, fell by 50% - but warned that it’s still the reigning champion amongmalwareand that won’t change any time soon.

“Emotet continues to dominate our monthly top malware charts,” said Maya Horowitz, VP Research at Check Point Software. “This botnet continually evolves to maintain its persistence and evasion. Its latest developments include a credit card stealer module, meaning that enterprises and individuals must take extra care when making any online purchases. In addition, withMicrosoftnow confirming that it will block macros by default, we await to see how malwares, such as Snake Keylogger, may change their tactics.”

Emotet still far ahead

Last month was Emotet’s peak, the researchers further stated, adding that the trojan is now back to its standard global impact numbers. While it’s hard to determine exactly what caused this drop, the researchers are speculating it’s most likely just due to the summer holidays, and not because the threat actor is backing out. Emotet constantly introducing new features is evidence to such claims.

That being said, Emotet is still the world’s most widespread malware, with a global impact of 7%. With 3%, Formbook takes second place, followed by XMRig with a 2% global impact. Formbook is a six-year-old infostealer for Windows, marketed as malware-as-a-service, and capable of stealing data from web browsers, collecting screenshots, logging keystrokes, and downloading and executing files.

Google Chrome user profiles under attack from Emotet malware>Emotet malware impersonates IRS as 2022 tax season approaches>Keep your business safe with the best endpoint protection

XMRig, on the other hand, is a well-known cryptominer, a piece of software that mines the XMR (Monero) cryptocurrency for attackers. While XMRig isn’t exactly avirus, and doesn’t necessarily steal data or destroy the endpoint it’s installed on, it does use up the majority of the computing power, leaving the device sluggish and underperforming.

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

A new form of macOS malware is being used by devious North Korean hackers

Scammers are using fake copyright infringement claims to hack businesses

We might have our first look at the long-rumored Samsung tri-fold