fileless malware – PossibleThreat Articles

Security Sophos

Memory scanning leaves attackers nowhere to hide

November 9, 2023 0 Comments featured, fileless malware, memory scanning, process injection, sophos x-ops, threat research

Credit to Author: Matt Wixey| Date: Thu, 09 Nov 2023 13:46:19 +0000

Sophos X-Ops takes an in-depth look at memory scanning and why it matters

MalwareBytes Security

Cybersecurity agencies: You don’t have to delete PowerShell to secure it

June 24, 2022 0 Comments amsi, applocker, credential protection, fileless malware, logging, persistence, PowerShell, security world, ssh, winrm

Credit to Author: Pieter Arntz| Date: Fri, 24 Jun 2022 11:34:04 +0000

International cybersecurity authorities have published a Cybersecurity Information Sheet on making it harder to abuse PowerShell

The post Cybersecurity agencies: You don’t have to delete PowerShell to secure it appeared first on Malwarebytes Labs.

Security Sophos

Brexit – even cybercriminals want to have their say…

December 12, 2019 0 Comments brexit, cryptojacking, fileless malware, malware, PowerShell, wannamine

Credit to Author: Naked Security writer| Date: Thu, 12 Dec 2019 16:31:25 +0000

These crooks stashed a message in the virus code itelf – we found it, but we don’t know which way to take it!<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/DkMfkmqt7vk” height=”1″ width=”1″ alt=””/>

Security Sophos

Mac users targetted by Lazarus ‘fileless’ Trojan

December 6, 2019 0 Comments Apple, cryptocurrency, fileless malware, lazarus group, MacOS, malware, nukesped

Credit to Author: John E Dunn| Date: Fri, 06 Dec 2019 13:18:09 +0000

The Lazarus hacking group are trying to sneak a ‘fileless’ Trojan on to Apple computers, disguised as a fake cryptocurrency trading program.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/GN789RKuVrQ” height=”1″ width=”1″ alt=””/>

Microsoft Security

Dismantling a fileless campaign: Microsoft Defender ATP’s Antivirus exposes Astaroth attack

July 30, 2019 0 Comments AI and machine learning, Antimalware Scan Interface (AMSI), Astaroth, behavior monitoring, Command-line scanning, cybersecurity, Endpoint security, Execution stage, fileless, fileless malware, heuristics, Initial access stage, living-off-the-land, Microsoft Defender ATP, Microsoft security intelligence, Security Intelligence, Threat protection, Windows Defender Antivirus, Windows Security, WMIC

Credit to Author: Eric Avena| Date: Mon, 08 Jul 2019 16:00:51 +0000

Advanced technologies in Microsoft Defender ATP’s Antivirus exposed and defeated a widespread fileless campaign that completely “lived off the land” throughout a complex attack chain that run the info-stealing backdoor Astaroth directly in memory

The post Dismantling a fileless campaign: Microsoft Defender ATP’s Antivirus exposes Astaroth attack appeared first on Microsoft Security .

Microsoft Security

Dismantling a fileless campaign: Microsoft Defender ATP next-gen protection exposes Astaroth attack

July 24, 2019 0 Comments AI and machine learning, Antimalware Scan Interface (AMSI), Astaroth, behavior monitoring, Command-line scanning, cybersecurity, Endpoint security, Execution stage, fileless, fileless malware, heuristics, Initial access stage, living-off-the-land, Microsoft Defender ATP, Microsoft security intelligence, Security Intelligence, Threat protection, Windows Defender Antivirus, Windows Security, WMIC

Credit to Author: Eric Avena| Date: Mon, 08 Jul 2019 16:00:51 +0000

Advanced technologies in Microsoft Defender ATP next-generation protection exposed and defeated a widespread fileless campaign that completely “lived off the land” throughout a complex attack chain that run the info-stealing backdoor Astaroth directly in memory

The post Dismantling a fileless campaign: Microsoft Defender ATP next-gen protection exposes Astaroth attack appeared first on Microsoft Security .