Lucene search
K

7 matches found

The Hacker News
The Hacker News
added 2025/05/16 7:56 a.m.18 views

Fileless Remcos RAT Delivered via LNK Files and MSHTA in PowerShell-Based Attacks

Cybersecurity researchers have shed light on a new malware campaign that makes use of a PowerShell-based shellcode loader to deploy a remote access trojan called Remcos RAT. "Threat actors delivered malicious LNK files embedded within ZIP archives, often disguised as Office documents," Qualys...

7.6AI score
Exploits0
Qualys Blog
Qualys Blog
added 2025/05/15 4:22 p.m.33 views

Fileless Execution: PowerShell Based Shellcode Loader Executes Remcos RAT

Cybercriminals are progressively turning PowerShell to launch stealthy attacks that evade traditional antivirus and endpoint defenses. By running code directly in memory, these threats leave minimal evidence on disk, making them particularly challenging to detect. A recent example is Remcos RAT, ...

7.9AI score
Exploits0
HackRead
HackRead
added 2025/05/15 3:22 p.m.14 views

Fileless Remcos RAT Attack Evades Antivirus Using PowerShell Scripts

A new wave of attacks uses PowerShell and LNK files to secretly install Remcos RAT, enabling full remote…...

7.3AI score
Exploits0
The Hacker News
The Hacker News
added 2021/02/24 3:29 p.m.5 views

Experts Warns of Notable Increase in QuickBooks Data Files Theft Attacks

New research has uncovered a significant increase in QuickBooks file data theft using social engineering tricks to deliver malware and exploit the accounting software. "A majority of the time, the attack involves basic malware that is often signed, making it hard to detect using antivirus or othe...

5.9AI score
Exploits0
ThreatPost
ThreatPost
added 2018/08/28 1:0 p.m.8 views

ThreatList: Ransomware Attacks Down, Fileless Malware Up in 2018

The use of fileless malware in attacks continues to grow and now represents 42 out of 1,000 endpoint attacks, according to an analysis of 2018 data by one security firm. The uptick represents a 94 percent increase in the use of fileless-based attacks between January and June 2018. The study,...

0.5AI score
Exploits0References3
FireEye
FireEye
added 2018/07/10 12:0 p.m.3883 views

Malicious PowerShell Detection via Machine Learning

Introduction Cyber security vendors and researchers have reported for years how PowerShell is being used by cyber threat actors to install backdoors, execute malicious code, and otherwise achieve their objectives within enterprises. Security is a cat-and-mouse game between adversaries, researcher...

5CVSS8AI score0.99993EPSS
Exploits45
FireEye
FireEye
added 2014/10/08 1:56 a.m.24 views

MIRcon 2014 – Day 1 Highlights

The first day of MIRcon 2014 is officially done and was packed with thought-provoking keynotes, presentations and a one-of-a-kind reception. While there's too much to fit into this blog post, I wanted to provide you with some of the highlights: FireEye's COO, Kevin Mandia kicked-off MIRcon and wa...

1.5AI score
Exploits0
Rows per page
Query Builder