'Fileless malware', the threat whose number of attacks increased by 900% in a year while ransomware cases declined



Ransomware attacks continue to make headlines on cybersecurity thanks to their destructive potential (as demonstrated by the recent attack on SEPE), but this media relevance hides the progressive decline in the number of attacks carried out by this type of malware.



In fact, according to the latest Internet security report prepared by WatchGuard Technologies (after its acquisition of Panda Security), the number of ransomware attacks decreased by 48% between 2019 and 2020.




"The steady decline in the volume of ransomware indicates that attackers continue to abandon the widespread and unfocused campaigns of the past to focus on targeted attacks against healthcare organizations, manufacturing companies and other victims for whom downtime is unacceptable."




There's a new malware in town ...



Parallel to this decline, other types of malware have taken their place: attacks with crypto mining software grew in that period by 25% ... but without a doubt the most remarkable thing is the sudden increase in attacks with fileless malware (or 'fileless malware') which increases almost 900%.







The best free online antivirus websites





As its name suggests, 'fileless malware' is one that does not use a file as support, but rather works hiding and running in RAM of our team:




"These threats can be particularly dangerous because of their ability to evade detection by traditional endpoint security clients and because they can be successful without victims doing anything beyond clicking a malicious link or visiting a compromised website. without knowing it".




The bad news is that the antivirus solutions we have today are not particularly effective against this threat. The good news is that as it resides in the RAM memory, our computer is clean of malware once we turn it off. Well then ... why worry about this new generation of malware?



Very simple: because the most critical computer systems, those of public administrations and large companies, many times They are designed to stay on without interruption, and the mere fact that a 'malware without files' forces you to reset them can already be the source of all kinds of problems.



Couple that with the fact that hackers already realized after the emergence of ransomware that these types of organizations are much more profitable as a target of an attack than home users, and we will have a potential headache on our hands for those responsible for cybersecurity.