Vaporworms, a fileless malware is now coming of age and may be the next big threat enterprises will have to contend with this year according to senior security analyst Marc Laliberte of WatchGuard Technologies.
Expert Comments below:
Justin Jett, Director of Audit and Compliance at Plixer:
“With fileless malware becoming common in 2019, it is even more important for IT professionals to deploy systems that allow teams to investigate breaches and attacks. A common goal for malware is data exfiltration, which takes advantage of the network to steal data from compromised systems. Because the malware doesn’t store files on the computer systems, but instead relies on scripts, PowerShell commands, etc., network traffic analytics is significantly more important. This is because IT teams will have no trail of malware on the systems, so they will need to rely on details from the network to understand where the malware has spread and which systems it may have exploited. When an attack uses fileless and undetectable methods on endpoint systems, the network becomes the most effective place to detect an attack. By leveraging metadata from the network, security and network professionals can track down malware as it spreads through the network, which reduces risk and keeps the business operational.”