Insights on the threats that matter: QakBot, Emotet, and Web3 Platform Abuse
The Cofense Intelligence™️ team analyzes millions of emails and malware samples to understand the phishing landscape. Every 90 days, we deliver this updated report on the latest threats spawned by malicious email attacks, so that you're aware of what could be hitting your inboxes.
During Q4, Cofense saw several small scale but impactful changes, but less of the sweeping changes seen in previous quarters. As usual, several of the significant changes in Q4 were due to Emotet. This includes a phishing volume spike in November, the prominence of Office macros as a delivery trend, and the continued dominance of the Loader malware types.
A few important topics covered in this report include:
- Sudden Increase in Emotet C2 Traffic
- Cost-Effective Service Abused in HTML Credential Phishing
- HTML Smuggling of Malware and QakBot
- Abuse of Web3 Technology for Evasive Phishing
