Top Tweets for #FileLessAttack

about 2 months ago

Attackers exploit Microsoft-signed MSBuild.exe to run inline C# in .csproj files, enabling fileless operations like reverse shells and DLL sideloading. Detection needs multi-layered behavior-based analysis. #FilelessAttack #MSBuildAbuse #Windows https://t.co/NJVqxQTqNS

0

2

0

110

2 months ago

DeepLoad malware uses ClickFix social engineering to deploy a fileless PowerShell loader, inject into trusted processes, steal credentials, and persist via WMI and USB propagation. #DeepLoad #FilelessAttack #USA https://t.co/47NkuWt6b7

0

1

152

#CyberSecurity #FilelessAttack #Malware #AsyncRAT #IPFS #ProcessInjection #WindowsSecurity #CyberThreat

3 months ago

A multi-stage PureLog Stealer campaign targets key industries using localized copyright phishing lures and fileless execution via Python and .NET loaders on Windows systems, with AMSI bypass and memory-only payloads. #PureLog #FilelessAttack https://t.co/A7q0TtmQzP

0

106

ProbablyPwned

@probablypwned

4 months ago

0

15

5 months ago

A phishing campaign using fake Vietnamese shipping documents spreads a fileless Remcos RAT via malicious Word and RTF files exploiting CVE-2017-11882, deploying in-memory .NET modules and process hollowing. #RemcosRAT #Vietnam #FilelessAttack https://t.co/U8kZ0RWsou

0

2

0

128

5 months ago

CRIL uncovered a multi-stage, fileless loader used in targeted email campaigns hitting Manufacturing and Government sectors in Italy, Finland, and Saudi Arabia. Utilizes CVE-2017-11882, steganographic PNGs, & task scheduler exploits. #Italy #FilelessAttack https://t.co/K6vk2BNe7m

0

161

6 months ago

Matrix Push C2 uses browser notifications as a fileless, cross-platform phishing method, delivering fake alerts from trusted brands to bypass security controls on any device. #FilelessAttack #BrowserPhishing #InfoSec https://t.co/5MApZyamdA

0

1

0

151

9 months ago

Malware campaigns use obfuscated BAT loaders in EML attachments and ImageKit-hosted SVGs to deliver XWorm and Remcos via PowerShell decoding, AMSI/ETW bypass, and encrypted .NET loaders for fileless persistence. #RemoteAccess #FilelessAttack https://t.co/7TSbt35rzq

0

1

0

1

120

GM Sectec USA @gmsectec_us

9 months ago

AsyncRAT exploits ConnectWise ScreenConnect to deploy fileless loaders using VBScript and PowerShell, stealing credentials and crypto while maintaining stealth and persistence. #AsyncRAT #FilelessAttack #RemoteAccess https://t.co/Nzd0tAHPK5

0

112

9 months ago · Fort Lauderdale

Not every cyberattack starts with a 𝐖𝐄𝐈𝐑𝐃 𝐋𝐈𝐍𝐊. MixShell hides in a simple contact form 🕵️‍♂️📩 and runs in memory 💻 leading to stolen creds, breached networks & risks for your partners. ⚠️ PREVENTION starts with awareness. #MixShellMalware #FilelessAttack #HumanFactor

gmsectec_us's tweet photo. Not every cyberattack starts with a 𝐖𝐄𝐈𝐑𝐃 𝐋𝐈𝐍𝐊.

MixShell hides in a simple contact form 🕵️‍♂️📩 and runs in memory 💻 leading to stolen creds, breached networks & risks for your partners.

⚠️ PREVENTION starts with awareness.

#MixShellMalware #FilelessAttack #HumanFactor https://t.co/YoCQM3K19T

0

2

1

0

21

Gray Hats @the_yellow_fall

10 months ago

A new stealthy campaign uses Windows LNK files to deploy the REMCOS backdoor via multi-stage PowerShell commands, bypassing antivirus and gaining full system control. #REMCOS #LNKMalware #FilelessAttack #Cybersecurity #RAT https://t.co/hoTjcdq9ck

1

0

1

282

Kirkham IronTech @kirkhamirontech

about 1 year ago

Fileless attacks don’t rely on traditional download tactics. Even something as harmless-looking as a Word doc can trigger malicious code in your system. No files, no downloads, just silent compromise. #Filelessattack #Cybersecurity #IT #Infosec #Malware

kirkhamirontech's tweet photo. Fileless attacks don’t rely on traditional download tactics.

Even something as harmless-looking as a Word doc can trigger malicious code in your system.

No files, no downloads, just silent compromise.

#Filelessattack #Cybersecurity #IT #Infosec #Malware https://t.co/uyFlUnRuj3

0

19

CRIL (Cyble Research and Intelligence Labs) @CybleInsights

over 1 year ago

Cyble Research and Intelligence Labs (CRIL) uncovers a stealthy in-memory attack targeting the US-Taiwan Defense Industry Conference, evading detection and exfiltrating sensitive data. https://t.co/O1MEqzuhhN #Cyberattack #FilelessAttack #APT #CRIL #Cyberespionage

0

2

1

0

214

over 2 years ago

https://t.co/9KbWAgMUdt 🚨 New attack report 🚨 🕷️Another Phobos Ransomware Variant Launches Attack [Monday, January 29, 2024] #AttackReport #Cybersecurity #shellcode #phobos #filelessattack #vbascript #msexcel #faust #ransomwareattack

0

46

over 2 years ago

https://t.co/9KbWAgMUdt 🚨 New attack report 🚨 🕷️Another Phobos Ransomware Variant Launches Attack [Monday, January 29, 2024] #AttackReport #Cybersecurity #shellcode #phobos #filelessattack #vbascript #msexcel #faust #ransomwareattack

0

46

over 2 years ago

https://t.co/9KbWAgMUdt 🚨 New attack report 🚨 🕷️Another Phobos Ransomware Variant Launches Attack [Monday, January 29, 2024] #AttackReport #Cybersecurity #shellcode #phobos #filelessattack #vbascript #msexcel #faust #ransomwareattack

0

29