Security firm McAfee has blocked access to malware that appeared to be sent from the company’s own network.
The malware was hosted on a third-party website but was shared via a domain associated with McAfee ClickProtect, an email protection service that the company touts as able to “protect your business from hacking.” The service is meant to protect against phishing attacks, malware from links in emails, and prevent users from visiting sites that are known to be high risk.
But the malicious link was only found when a Paris-based security researcher, who uses the pseudonymous handle Benkow, found and tweeted a malware analysis report that included the link.
The link redirected users through the “cp.mcafee.com” domain and on to the malicious Word document.
Anyone who downloaded and opened the malicious Word document would’ve been exposed to the Emotet banking malware.
[Continue reading]– ZDNet
