Encrypted & Fileless Malware Sees Big Growth

2021-10-04 20:31

A full 91.5 percent of malware was delivered using HTTPS-encrypted connections in the second quarter, researchers said, making attacks more evasive.

That's according to WatchGuard Technologies' latest report on findings within its telemetry, which also found that these detections come primarily from two malware families: AMSI.Disable.

The report also noted that the stats mean that any organization that is not examining encrypted HTTPS traffic at the perimeter is missing blocking nine out of 10 malware infection attempts.

WatchGuard's report also identified other malware trends for the quarter, including growth in fileless threats, which is a category into which AMSI.Disable.

In just the first six months of 2021, malware detections originating from scripting engines like PowerShell had already reached 80 percent of last year's total script-initiated attack volume.

At its current rate, 2021 fileless malware detections are on track to double in volume year over year.

News URL

https://threatpost.com/encrypted-fileless-malware-growth/175306/

#encrypted #malware