TRENDING:

Cybercrime , Fraud Management & Cybercrime

Cybercrime Trends: Cryptojacking, Fileless Attacks

Carbon Black's Rick McElroy Describes Latest Attacks and Threat Hunting Tactics Mathew J. Schwartz (euroinfosec) • June 22, 2018    
Rick McElroy, security strategist, Carbon Black

Attackers continue to shift their tactics to help evade improvements in defenses, says Rick McElroy of Carbon Black.

See Also: Live Webinar | Breaking Down Security Challenges so Your Day Doesn’t Start at 3pm

"Traditionally, a lot of endpoint attacks were malware-based," for example to infect systems with ransomware, he says. "Now, what attackers have started to do is, they know that there's better detection down there, and better prevention for that. So they're starting to do things like memory injections and invoking things like PowerShell, or invoking WMI [Windows Management Instrumentation]. So they continue to evolve and to evade traditional technology that's out there."

In a video interview at the recent Infosecurity Europe conference in London, McElroy discusses:

  • Malware: Executable versus fileless attacks;
  • Attackers' shift from using PowerShell to WMI;
  • How ransomware is giving way to cryptojacking.

McElroy, security strategist for Carbon Black, has more than 15 years of information security experience educating and advising organizations on reducing their risk posture and tackling tough security challenges. He has held security positions with the U.S. Department of Defense and in several industries, including retail, insurance, entertainment, cloud computing and higher education.

Previous
Behavioral Analytics: Essential for Battling Data Breaches
Next
Hacking Incident at Billing Vendor Affects 270,000 Patients

About the Author

Mathew J. Schwartz

Mathew J. Schwartz

Executive Editor, DataBreachToday & Europe, ISMG

Schwartz is an award-winning journalist with two decades of experience in magazines, newspapers and electronic media. He has covered the information security and privacy sector throughout his career. Before joining Information Security Media Group in 2014, where he now serves as the executive editor, DataBreachToday and for European news coverage, Schwartz was the information security beat reporter for InformationWeek and a frequent contributor to DarkReading, among other publications. He lives in Scotland.



Around the Network

CyberArk CEO Touts New Browser That Secures Privileged Users
CyberArk CEO Touts New Browser That Secures Privileged Users
How to Simplify Data Protection within your Organization
How to Simplify Data Protection within your Organization
Checking Out Security Before Using AI Tools in Healthcare
Checking Out Security Before Using AI Tools in Healthcare
HHS OCR Leader: Agency Is Cracking Down on Website Trackers
HHS OCR Leader: Agency Is Cracking Down on Website Trackers
Why Legacy Medical Systems Are a Growing Concern
Why Legacy Medical Systems Are a Growing Concern
Top Privacy Considerations for Website Tracking Tools
Top Privacy Considerations for Website Tracking Tools
Closing Privacy 'Loopholes' in Reproductive Healthcare Data
Closing Privacy 'Loopholes' in Reproductive Healthcare Data
What's Inside Washington State's New My Health My Data Act
What's Inside Washington State's New My Health My Data Act
Integrating Generative AI Into the Threat Detection Process
Integrating Generative AI Into the Threat Detection Process
Are We Facing a Massive Cybersecurity Threat?
Are We Facing a Massive Cybersecurity Threat?

Continue »

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing govinfosecurity.com, you agree to our use of cookies.