It’s been a summer season of ransomware hold-ups, provide chain assaults and fileless assaults flying underneath the radar of old-school safety. With malware working amok whereas we had been mendacity on the seashore, this is a recap of essentially the most burning strains and traits seen within the wild in the course of the months of July and August 2019.
Malware Evolution Trends
The warmth should have had an impact as this summer season noticed malware persevering with to evolve, significantly round three core traits:
Malware has been more and more designed to bypass safety controls leveraging a bunch of ways, most notably by:
- Changing hashes through file obfuscation to evade AVs.
- Using encrypted communication with C2 servers to foil EDRs.
- Using characteristic manipulation and tampering to trick AI, machine-learning engines, and sandboxes by way of the detection of such environments and the deliberate delay in execution.
Fileless Attacks and Living-Off-The-Land (LOTL)
Taking evasion strategies one step additional, an growing quantity of strains are leveraging PowerShell instructions and masquerading as official system instruments, all whereas working utterly from reminiscence (RAM) to fly underneath the radar of conventional IoC-based options and…