"Emotet Malware Now Distributed in Microsoft OneNote Files to Evade Defenses"
The Emotet malware is now being delivered through Microsoft OneNote email attachments in an attempt to circumvent Microsoft's security measures and infect more systems. Emotet is a malware botnet that was previously spread using Microsoft Word and Excel attachments containing malicious macros. The Emotet malware will be installed on the device if the user opens the attachment and enables macros. Once loaded, the malware will steal email addresses and content for future spam attacks. Furthermore, it will download other payloads that enable initial access to the enterprise network. This access is used to launch cyberattacks on the organization, such as ransomware attacks, data theft, cyber espionage, and extortion. As expected, the threat actors have begun spreading the Emotet malware via infected Microsoft OneNote attachments. These attachments are distributed in reply-chain emails that pose as guides, how-tos, invoices, and other documents. This article continues to discuss the distribution of Emotet malware using Microsoft OneNote email attachments.