‘Fileless’ cyber attacks on the rise in 2018: McAfee

By: |
New Delhi | Published: July 28, 2018 3:22 PM

Cyber-criminals are increasingly applying "fileless" attacks in 2018 that leverage trusted Windows executables to invade systems and breach corporate networks, a new report has said.

“Fileless” attacks that do”t drop malware on a victi”s system. Instead, they use tools already installed on computers or run simple scripts and shellcode in memory, often hidden in the Windows Registry. (Representational photo)

Cyber-criminals are increasingly applying “fileless” attacks in 2018 that leverage trusted Windows executables to invade systems and breach corporate networks, a new report has said.

“Fileless” attacks that do”t drop malware on a victi”s system. Instead, they use tools already installed on computers or run simple scripts and shellcode in memory, often hidden in the Windows Registry.

According to global cyber security firm McAfee Labs, the “fileless” attacks are growing in 2018 as these attacks are launched through reputable executables (or memory) and are hard to detect.

“One fileless threat, CactusTorch, uses the ‘DotNetToJScript’ technique which loads and executes malicious .NET assemblies straight from memory,” McAfee said in a statement.

“In 2018, we have seen rapid growth in the use of CactusTorch, which can execute custom shellcode on Windows systems,” it added.

Both consumers and corporate users can fall victim to this threat. In corporate environments, attackers use this vector to move laterally through the network.

In McA’ee’s “Q2 Threat” report, many fileless malware campaigns were discovered to leverage Microsoft PowerShell to launch attacks in memory to create a backdoor into a system — surging 432 per cent over 2017.

“Fileless” malware takes advantage of the trust factor between security software and genuine, signed Windows applications.

Get live Stock Prices from BSE, NSE, US Market and latest NAV, portfolio of Mutual Funds, calculate your tax by Income Tax Calculator, know market’s Top Gainers, Top Losers & Best Equity Funds. Like us on Facebook and follow us on Twitter.

Financial Express is now on Telegram. Click here to join our channel and stay updated with the latest Biz news and updates.

Next Stories
1Ravi Shankar Prasad hails India’s growing app economy, hopes Google’s substantial investment will promote homegrown startups
2PUBG Mobile goes strict on ‘cheaters’ with new feature; everything to know
3Google to invest Rs 75,000 crore to help accelerate India’s digital economy