Security News > 2023 > July > Fileless attacks increase 1,400%

Aggregated honeypot data, over a six-month period, showed that more than 50% of the attacks focused on defense evasion, according to Aqua Security.

These attacks included masquerading techniques, such as files executed from /tmp, and obfuscated files or information, such as dynamic loading of code.

In 5% of the attacks, threat actors used a memory resident malware.

Compared with prior Aqua Nautilus research in 2022, there was a 1,400% increase in fileless attacks.

"The most persuasive evidence of this was our discovery of HeadCrab, the extremely sophisticated, stealthy, Redis-based malware that compromised more than 1,200 servers. When it comes to runtime security, only agent-based scanning can detect attacks like these that are designed to evade volume-based scanning technologies, and they are critical as evasion techniques continue to evolve."

Ultimately, it's critical to implement robust protection measures in runtime environments to ensure that data and applications are secure and to avoid being vulnerable to attacks.

News URL

https://www.helpnetsecurity.com/2023/07/04/threat-actors-detection-evasion/