Emotet may have even more malware installed on Windows laptops

The Emotet malware has been stopped since the beginning of the year. And these days the dangerous Trojan was finally deleted from the computers of those affected. But that is not the end of it.

The malware has been deleting itself on the computers of those affected since April 25, because the BKA programmed it to do so, reports the specialist portal “Heise online”. The legality of the BKA remote access is controversial. Those affected must also expect that the danger on the computer has not yet been averted.

Also interesting: What to do with faulty Windows updates?

Even more uninvited guests

“You have to assume that in addition to the infection with Emotet there is also further malware on at least one computer system in your local network,” warns the BKA. It also gives specific examples of malware that Emotet may have caught up with. For example the banking Trojans Trickbot and Qakbot and the extortionate encryption Trojan Ryuk.

BSI recommends reinstallation and password change

You can only be absolutely sure that nothing is left of the malware or its remains on the system after reinstalling Windows. The Federal Office for Information Security (BSI) recommends this step . You should back up all important files and documents beforehand or use a data backup from pre-infection times.

The malware may not only have manipulated online banking but also spied on passwords. Therefore, according to the BSI, the following also applies: Change all passwords stored on the infected computer, including access data in the browser and, in particular, the password for the e-mail inbox.

Also interesting: 25 Windows Keyboard Shortcuts You Should Know

Check to see if you have been hacked yourself

Even users who did not have Emotet & Co as uninvited guests on their computers can do something for their security. Because it is possible that your own e-mail address appears as a robbery of the Trojan in the data records secured by the cybercriminals.