Insights on the threats that matter: QakBot, Emotet, and Web3 Platform Abuse
The Cofense Intelligence鈩笍 team analyzes millions of emails and malware samples to understand the phishing landscape. Every 90 days, we deliver this updated report on the latest threats spawned by malicious email attacks, so that you're aware of what could be hitting your inboxes.
During Q4, Cofense saw several small scale but impactful changes, but less of the sweeping changes seen in previous quarters. As usual, several of the significant changes in Q4 were due to Emotet. This includes a phishing volume spike in November, the prominence of Office macros as a delivery trend, and the continued dominance of the Loader malware types.
A few important鈥痶opics covered in this report鈥痠nclude:
- Sudden Increase in Emotet C2 Traffic
- Cost-Effective Service Abused in HTML Credential Phishing
- HTML Smuggling of Malware and QakBot
- Abuse of Web3 Technology for Evasive Phishing
