Increased Emotet Malware Activity (CISA)

こんにちは、丸山満彦です。

米国では、「Emotetの活動が活発になってきてますよ」ってアナウンスが出ていますね。。。

 

●Cybersecurity and Infrastructure Security Agency (CISA)
・2020.01.22 Increased Emotet Malware Activity

・2018.01.20 Alert (TA18-201A) Emotet Malware

対策のところを読んでいて思ったのですが、、、

・メールでZIPファイルとか送られれ来ると迷惑なんですよね。。。きっと。。。

Consider blocking file attachments that are commonly associated with malware, such as .dll and .exe, and attachments that cannot be scanned by antivirus software, such as .zip files.

・最小特権も重要なんでよね。

Adhere to the principal of least privilege, ensuring that users have the minimum level of access required to accomplish their duties. Limit administrative credentials to designated administrators.