CSO Online

Phishing campaign chains old Office flaw with fileless XWorm RAT to evade detection

The campaign exploits an Office vulnerability to deliver the modular XWorm RAT, chaining HTA, PowerShell, and in-memory .NET execution to sidestep detection and expand post-compromise control.

Fake CAPTCHA Scam Tricks Windows Users Into Installing Malware

A fake CAPTCHA scam is tricking Windows users into running PowerShell commands that install StealC malware and steal passwords, crypto wallets, and more.
Homeland Security Today

McAfee Labs Finds Fileless Malware, Mobile Attacks on the Rise

New forms of cyber attacks that can evade traditional threat detection are granting hackers access to critical information stored in personal computers and in the cloud, according to a new report.
Dark Reading

The Rise of 'Fileless' Malware

Malware has typically used files that it makes resident on a target machine to carry out an attack. But another class of malware called "fileless" does the opposite. The attack that the malware causes ...
The Hacker News

DEAD#VAX Malware Campaign Deploys AsyncRAT via IPFS-Hosted VHD Phishing Files

DEAD#VAX campaign delivers AsyncRAT via IPFS-hosted VHD phishing files, using fileless memory injection and obfuscated scripts to evade detection.
Homeland Security Today

Dismantling a Fileless Campaign: Microsoft Details Astaroth Malware Attack

I was doing a standard review of Windows Defender Antivirus telemetry when I noticed an anomaly from a detection algorithm designed to catch a specific fileless technique. Telemetry showed a sharp ...
Dark Reading

An Attack Using Only System Tools Is Not Invisible – You Just Have to Look Harder

Microsoft's team behind Windows Defender ATP (the commercial version of the company's Windows Defender free antivirus) has identifieda new "fileless" malware campaign that can bypass standard ...
CSOonline

Cryptojacking attack on cloud workloads uses fileless Python malware

With increased deployment of security solutions on cloud infrastructure, hackers have started adopting detection evasion tactics from Windows desktop computers to cloud environments. One such tactic ...
Computerworld

Hackers make drive-by attacks stealthier with fileless infections

Cybercriminals are increasingly infecting computers with malware that resides only in memory in order to make their attacks harder to detect. Recent attacks launched with the Angler exploit kit — a ...
Computer Weekly

Why we need advanced malware detection with AI-powered tools

Whether you’re an individual or a company, safeguarding your data is of utmost importance. One effective approach to protect sensitive information and systems is by utilising tools powered by ...
Infosecurity-magazine.com

BunnyLoader Malware Targets Browsers and Cryptocurrency

Zscaler ThreatLabz has identified a newly emerging Malware-as-a-Service (MaaS) threat known as "BunnyLoader," available on underground forums. The tool, priced at $250, is actively under development, ...