Milos Constantin · @Tinolle
62 followers · 85 posts · Server hachyderm.io
PyLoose: #Python-based #fileless #malware targets #cloud workloads to deliver cryptominer
https://www.wiz.io/blog/pyloose-first-python-based-fileless-attack-on-cloud-workloads?fbclid=IwAR1651IfmeMvgs107f0qlCTp7bqPTZYFrUb9jb5idIgwtlBUstvSxLDGQZg
#python #fileless #malware #cloud
Manuel Bissey · @mbissey
32 followers · 520 posts · Server cyberplace.social
Marcus Botacin · @MarcusBotacin
19 followers · 15 posts · Server infosec.exchange[Paper of the day][#9] Have you heard about #fileless #malware? Malware samples that operate solely from the memory, without a disk counterpart to be scanned. How to detect it? Constant memory scans are required. How to do it without causing overhead? What if the #Antivirus were moved to inside the memory controller? What if only scanned data were delivered for CPU execution? This is exactly what we propose in this paper. We propose a new #security fault to be added to the page fault mechanism to trigger AV scans on-demand when suspicious pages are about to be executed. Check it out!
Academic paper: https://dl.acm.org/doi/10.1145/3422575.3422775
Archived version: https://secret.inf.ufpr.br/papers/marcus_fileless.pdf
#fileless #malware #antivirus #security
ITSEC News · @itsecbot
687 followers · 32461 posts · Server schleuss.online
TeamTNT Gains Full Remote Takeover of Cloud Instances - Using a legitimate tool called Weave Scope, the cybercrime group is establishing fileless backdoor... https://threatpost.com/teamtnt-remote-takeover-cloud-instances/159075/ #vulnerabilities #cloudinstances #remotetakeover #cloudsecurity #cyberattacks #websecurity #dockerimage #kubernetes #weavescope #microsoft #backdoor #fileless #intezer #teamtnt #docker #hacks
#hacks #docker #teamtnt #intezer #fileless #backdoor #microsoft #weavescope #kubernetes #dockerimage #websecurity #cyberattacks #cloudsecurity #remotetakeover #cloudinstances #vulnerabilities
ITSEC News · @itsecbot
687 followers · 32461 posts · Server schleuss.online
FritzFrog Botnet Attacks Millions of SSH Servers - The unique, advanced worming P2P botnet drops backdoors and cryptominers, and is spreading globall... https://threatpost.com/fritzfrog-botnet-millions-ssh-servers/158489/ #malwareanalysis #guardicorelabs #cryptomining #websecurity #bruteforce #peertopeer #fritzfrog #sshserver #fileless #malware #botnet #unique #worm #p2p
#p2p #worm #unique #botnet #malware #fileless #sshserver #fritzfrog #peertopeer #bruteforce #websecurity #cryptomining #guardicorelabs #malwareanalysis