속보 

사이트 내 전체검색

2019년 06월 19일 수요일

Cybersecurity Report Warns of Spike in “Fileless” Attacks This 2018

(아시아뉴스통신= Timothy Montales기자) 기사입력 : 2019년 05월 16일 15시 20분

[Photo source : Wikimedia Commons]
 
Global cybersecurity firm McAfee Labs stated in its recent report that “fileless” attacks are growing this year. It is a kind of cyber attack that doesn't drop malware on the system of the victim so antivirus tools are more likely to miss them. Instead, these attacks use tools that are already installed on the PC or just run scripts in memory, reports Indian newspaper Hindustan Times. 


The McAfee Labs explained that “fileless” attacks are usually launched through a reputable memory or on executables and are not easy to detect. It cited a fileless threat called CactusTorch that uses the “DotNetTojScript” technique, wherein it loads and executes malicious.Net assemblies straight through the memory. 


Cybersecurity expert Debasish Mandal commented that said assemblies are the smallest deployment unit of an app, like the .exe or .dll.


In its statement, the cybersecurity firm also highlighted that in 2018, they have already seen a rapid growth in the use of the fileless threats that can execute the custom shellcode on the victim’s Windows systems.  A shellcode is a set of instructions injected and executed by an exploited program. It is used to manipulate the functionality and registers of the exploited program so that it will function in a manner different than what was originally intended by its designer.


In McAfee's Q2 Threat report, the company likewise detailed that both corporate users and consumers can fall victim to fileless attacks. They further shared that said malware takes advantage of the trust factor between genuine Windows applications and security software.


[ 저작권자 © 아시아뉴스통신. 무단 전재 및 재배포금지]



제보전화 : 1644-3331    이기자의 다른뉴스보기
의견쓰기

댓글 작성을 위해 회원가입이 필요합니다.
회원가입 시 주민번호를 요구하지 않습니다.

가장 많이 본 뉴스

실시간 급상승 정보

TODAY'S HOT

more