Lucene search
K

195 matches found

The Hacker News
The Hacker News
added 2026/01/07 5:19 p.m.6 views

Webinar: Learn How AI-Powered Zero Trust Detects Attacks with No Files or Indicators

Security teams are still catching malware. The problem is what they're not catching. More attacks today don't arrive as files. They don't drop binaries. They don't trigger classic alerts. Instead, they run quietly through tools that already exist inside the environment — scripts, remote access,...

7.2AI score
Exploits0
HackRead
HackRead
added 2025/12/10 8:26 p.m.12 views

Torrent for DiCaprio’s “One Battle After Another” Movie Drops Agent Tesla

Bitdefender researchers warn that the torrent for Leonardo DiCaprio’s One Battle After Another is a trap deploying Agent Tesla malware. Learn how the fileless LOTL attack targets unsuspecting Windows users...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2025/12/09 1:37 p.m.21 views

Storm-0249 Escalates Ransomware Attacks with ClickFix, Fileless PowerShell, and DLL Sideloading

The threat actor known as Storm-0249 is likely shifting from its role as an initial access broker to adopt a combination of more advanced tactics like domain spoofing, DLL side-loading, and fileless PowerShell execution to facilitate ransomware attacks. "These methods allow them to bypass defense...

7.3AI score
Exploits0
Malwarebytes
Malwarebytes
added 2025/12/03 1:33 p.m.7 views

Fileless protection explained: Blocking the invisible threat others miss

Most antivirus software for personal users scans your computer for malware hiding in files. This is, after all, how most malware is traditionally spread. But what about attacks that never create files? Fileless malware is a fast-growing threat that evades traditional antivirus software, because...

7.4AI score
Exploits0
The Hacker News
The Hacker News
added 2025/11/22 6:47 a.m.14 views

Matrix Push C2 Uses Browser Notifications for Fileless, Cross-Platform Phishing Attacks

Bad actors are leveraging browser notifications as a vector for phishing attacks to distribute malicious links by means of a new command-and-control C2 platform called Matrix Push C2. "This browser-native, fileless framework leverages push notifications, fake alerts, and link redirects to target...

9.8CVSS8.8AI score0.99962EPSS
Exploits24
Malwarebytes
Malwarebytes
added 2025/11/19 4:23 p.m.12 views

Mac users warned about new DigitStealer information stealer

A new infostealer called DigitStealer is going after Mac users. It avoids detection, skips older devices, and steals files, passwords, and browser data. We break down what it does and how to protect your Mac. Researchers have described a new malware called DigitStealer that steals sensitive...

7.2AI score
Exploits0
Securelist
Securelist
added 2025/10/15 1:0 p.m.9 views

Maverick: a new banking Trojan abusing WhatsApp in a mass-scale distribution

A malware campaign was recently detected in Brazil, distributing a malicious LNK file using WhatsApp. It targets mainly Brazilians and uses Portuguese-named URLs. To evade detection, the command-and-control C2 server verifies each download to ensure it originates from the malware itself. The whol...

7.4AI score
Exploits0
HackRead
HackRead
added 2025/10/14 9:54 a.m.5 views

Astaroth Trojan Uses GitHub Images to Stay Active After Takedowns

Astaroth banking trojan has evolved to use GitHub and steganography for resilient C2, hiding its vital commands in images. Learn how this sophisticated malware employs fileless techniques to steal banking and crypto credentials from users across Latin America...

7.2AI score
Exploits0
HackRead
HackRead
added 2025/09/10 5:22 p.m.6 views

Chinese APT Hits Philippine Military Firm with New EggStreme Fileless Malware

Bitdefender uncovers EggStreme, a fileless malware by a China-based APT targeting the Philippine military and APAC organisations. Cybersecurity…...

7AI score
Exploits0
HackRead
HackRead
added 2025/09/10 4:3 p.m.6 views

New Fileless Malware Attack Uses AsyncRAT for Credential Theft

LevelBlue Labs reports AsyncRAT delivered through a fileless attack chain using ScreenConnect, enabling credential theft and persistence...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2025/09/10 3:46 p.m.14 views

Chinese APT Deploys EggStreme Fileless Malware to Breach Philippine Military Systems

An advanced persistent threat APT group from China has been attributed to the compromise of a Philippines-based military company using a previously undocumented fileless malware framework called EggStreme. "This multi-stage toolset achieves persistent, low-profile espionage by injecting malicious...

7.3AI score
Exploits0
Trellix
Trellix
added 2025/09/08 12:0 a.m.33 views

Silent Pivot: Detecting Fileless Lateral Movement via Service Manager with Trellix NDR

Silent Pivot: Detecting Fileless Lateral Movement via Service Manager with Trellix NDR By Maulik Maheta and Lishoy Mathew · September 8, 2025 Executive summary The tactics of cyber adversaries continue to evolve as they attempt to bypass security vendors. Rather than traditional malware, today’s...

6.1AI score
Exploits0
Trellix
Trellix
added 2025/08/21 12:0 a.m.10 views

The Silent, Fileless Threat of VShell

The Silent, Fileless Threat of VShell By Sagar Bade · August 21, 2025 Introduction Linux environments are often seen as bastions of security, favored by developers, sysadmins, and security professionals for their stability, transparency, and resistance to malware. Compared to Windows, the attack...

6.5AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/08/05 12:0 a.m.4 views

RX-INT: a Kernel Engine for Real-Time Detection and Analysis of In-Memory Threats

Malware and cheat developers use fileless execution techniques to evade traditional, signature-based security products. These methods include various types of manual mapping, module stomping, and threadless injection which work entirely within the address space of a legitimate process, presenting...

7.2AI score
Exploits0
The Hacker News
The Hacker News
added 2025/04/01 5:8 p.m.15 views

Over 1,500 PostgreSQL Servers Compromised in Fileless Cryptocurrency Mining Campaign

Exposed PostgreSQL instances are the target of an ongoing campaign designed to gain unauthorized access and deploy cryptocurrency miners. Cloud security firm Wiz said the activity is a variant of an intrusion set that was first flagged by Aqua Security in August 2024 that involved the use of a...

8.8AI score
Exploits0
The Hacker News
The Hacker News
added 2024/11/11 6:13 a.m.23 views

Cybercriminals Use Excel Exploit to Spread Fileless Remcos RAT Malware

Cybersecurity researchers have discovered a new phishing campaign that spreads a new fileless variant of known commercial malware called Remcos RAT. Remcos RAT "provides purchases with a wide range of advanced features to remotely control computers belonging to the buyer," Fortinet FortiGuard Lab...

7.8CVSS8.1AI score0.99933EPSS
Exploits29
HackRead
HackRead
added 2024/10/22 6:8 p.m.15 views

Fake CAPTCHA Pages Used by Lumma Stealer to Spread Fileless Malware

Lumma Stealer malware uses fake CAPTCHA to deceive victims. This information-stealing malware targets sensitive data like passwords and…...

7.2AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2024/08/30 12:0 a.m.45 views

Silent Intrusions: Godzilla Fileless Backdoors Targeting Atlassian Confluence

Trend Micro discovered that old Atlassian Confluence versions that were affected by CVE-2023-22527 are being exploited using a new in-memory fileless backdoor...

9.8CVSS7.2AI score0.99984EPSS
Exploits32
The Hacker News
The Hacker News
added 2024/06/28 11:59 a.m.76 views

8220 Gang Exploits Oracle WebLogic Server Flaws for Cryptocurrency Mining

Security researchers have shed more light on the cryptocurrency mining operation conducted by the 8220 Gang by exploiting known security flaws in the Oracle WebLogic Server. "The threat actor employs fileless execution techniques, using DLL reflective and process injection, allowing the malware...

7.5CVSS7.1AI score0.99993EPSS
Exploits56
Kitploit
Kitploit
added 2024/04/17 12:30 p.m.98 views

Cookie-Monster - BOF To Steal Browser Cookies & Credentials

Steal browser cookies for edge, chrome and firefox through a BOF or exe! Cookie-Monster will extract the WebKit master key, locate a browser process with a handle to the Cookies and Login Data files, copy the handles and then filelessly download the target. Once the Cookies/Login Data files are...

7.1AI score
Exploits0References3
Rows per page
Query Builder