{"id":3918,"date":"2019-05-09T14:37:19","date_gmt":"2019-05-09T18:37:19","guid":{"rendered":"https:\/\/solutionsreview.com\/endpoint-security\/?p=3918"},"modified":"2019-06-24T14:21:11","modified_gmt":"2019-06-24T18:21:11","slug":"is-fileless-malware-the-future-and-can-it-be-stopped","status":"publish","type":"post","link":"https:\/\/solutionsreview.com\/endpoint-security\/is-fileless-malware-the-future-and-can-it-be-stopped\/","title":{"rendered":"Is Fileless Malware the Future? And Can It Be Stopped?"},"content":{"rendered":"<p><img loading=\"lazy\" decoding=\"async\" class=\"alignleft size-full wp-image-3919\" src=\"https:\/\/solutionsreview.com\/endpoint-security\/files\/2019\/05\/fileless-malware-mod.jpg\" alt=\"https:\/\/solutionsreview.com\/endpoint-security\/5-critical-next-gen-endpoint-security-capabilities-for-businesses\/\" width=\"800\" height=\"400\" srcset=\"https:\/\/solutionsreview.com\/endpoint-security\/files\/2019\/05\/fileless-malware-mod.jpg 800w, https:\/\/solutionsreview.com\/endpoint-security\/files\/2019\/05\/fileless-malware-mod-300x150.jpg 300w, https:\/\/solutionsreview.com\/endpoint-security\/files\/2019\/05\/fileless-malware-mod-768x384.jpg 768w, https:\/\/solutionsreview.com\/endpoint-security\/files\/2019\/05\/fileless-malware-mod-540x270.jpg 540w, https:\/\/solutionsreview.com\/endpoint-security\/files\/2019\/05\/fileless-malware-mod-162x81.jpg 162w, https:\/\/solutionsreview.com\/endpoint-security\/files\/2019\/05\/fileless-malware-mod-360x180.jpg 360w\" sizes=\"(max-width: 800px) 100vw, 800px\" \/><\/p>\n<p style=\"text-align: justify\">By <a href=\"https:\/\/www.exabeam.com\/author\/ex_pramod\/\" target=\"_blank\" rel=\"noopener noreferrer\">Pramod Borkar<\/a> of <a href=\"https:\/\/www.exabeam.com\/\" target=\"_blank\" rel=\"noopener noreferrer\">Exabeam<\/a><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Yes, and most certainly yes. <a href=\"https:\/\/solutionsreview.com\/endpoint-security\/ransomware-cryptojacking-and-fileless-malware-which-is-most-threatening\/\" target=\"_blank\" rel=\"noopener noreferrer\">Fileless malware<\/a> attacks are on the rise but they can also be stopped.<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">According to research by the<\/span><a href=\"https:\/\/www.cbronline.com\/news\/fileless-attacks-powershell\" target=\"_blank\" rel=\"noopener noreferrer\"> <span style=\"font-weight: 400\">Ponemon Institute<\/span><\/a><span style=\"font-weight: 400\">, fileless malware attacks accounted for about 35 percent of all cyberattacks in 2018, and they are almost 10 times more likely to succeed than file-based attacks.<\/span><\/p>\n<p><span style=\"font-weight: 400\"><div class=\"widget\"><div class=\"aside-card\">\t\t\t<div class=\"textwidget\"><p><a class=\"#\" href=\"https:\/\/solutionsreview.com\/endpoint-security\/free-endpoint-protection-buyers-guide\/\" target=\"_blank\" rel=\"noopener\"><img loading=\"lazy\" decoding=\"async\" class=\"alignleft size-full wp-image-1682\" src=\"https:\/\/solutionsreview.com\/endpoint-security\/files\/2019\/01\/endpoint-security-speedbump-cta.jpg\" alt=\"Download Link to Endpoint Security Buyer's Guide\" width=\"800\" height=\"225\" \/><\/a><\/p>\n<\/div>\n\t\t<\/div><\/div><\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Although fileless malware doesn\u2019t yet have the notoriety of ransomware and other attack vectors, fileless attacks nevertheless can pose a major threat\u2014and they\u2019re evolving, according to a 2017<\/span><a href=\"https:\/\/resources.malwarebytes.com\/resource\/under-the-radar-the-future-of-undetected-malware\/?utm_source=blog&amp;utm_medium=post&amp;utm_campaign=q4fy19\" target=\"_blank\" rel=\"noopener noreferrer\"> <span style=\"font-weight: 400\">report<\/span><\/a><span style=\"font-weight: 400\"> by Malwarebytes.<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">But the future is not so bleak: like any threat, fileless malware security threats can be mitigated with the proper understanding and plan for counterattack. <\/span><\/p>\n<h3 style=\"text-align: justify\"><b>Understanding Fileless Malware Attacks<\/b><\/h3>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Unlike other breeds of malware that require the installation of software on a victim\u2019s machine, <\/span><i><span style=\"font-weight: 400\">fileless malware<\/span><\/i><span style=\"font-weight: 400\"> infects a host computer\u2019s dynamic memory, or RAM. Fileless malware attacks can also hijack Windows, essentially turning the power of the OS against its own users by using common tools like PowerShell (which is integrated into Windows 8) for its malicious activities.<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Beginning with a phishing email, a visit to a malicious website, or the use of an infected USB flash memory stick, fileless malware scans the machine looking for vulnerabilities\u2014whether it\u2019s unpatched Flash or a Java plug-in, or almost any process that involves PowerShell. The payload then begins executing the attack by using the dynamic memory of the user\u2019s computer, such as leveraging browser processes.<\/span><\/p>\n<h3 style=\"text-align: justify\"><b>Undetected Threats Waltz Into Your Network<\/b><\/h3>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Fileless malware does not write onto your disk. Instead, the malware lurks in memory using hiding places such as PowerShell (widely used by system administrators to automate tasks), Visual Basic (VB) scripts, and Windows Management Instrumentation (WMI). Fileless malware attacks bypass traditional anti-malware programs that typically only scan for malicious files, which are then flagged for removal because there\u2019s no file on a system. Lack of cookie crumbs (aka remnant code) also makes it tough for security teams to analyze the malware behavior later.<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">In addition, bad actors are equipping fileless malware with new abilities. These not only enable such attacks to evade detection, but their payloads can also deliver advanced infections. One concern for enterprises is that fileless attacks are <\/span><i><span style=\"font-weight: 400\">\u201c<\/span><\/i><a href=\"https:\/\/resources.malwarebytes.com\/resource\/under-the-radar-the-future-of-undetected-malware\/?utm_source=blog&amp;utm_medium=post&amp;utm_campaign=q4fy19\" target=\"_blank\" rel=\"noopener noreferrer\"><i><span style=\"font-weight: 400\">borrowing<\/span><\/i><\/a><i><span style=\"font-weight: 400\"> the propagation and anti-forensic techniques seen in the complex nation-state attacks.\u201d<\/span><\/i><\/p>\n<h3 style=\"text-align: justify\"><b>Persistence, Powerful Payloads<\/b><\/h3>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Persistence is one area where such added tactics, techniques, and procedures (TTP) are having a greater impact. With potentially many months needed to remediate an attack, imagine how much<\/span><a href=\"https:\/\/www.ibm.com\/security\/data-breach\" target=\"_blank\" rel=\"noopener noreferrer\"> <span style=\"font-weight: 400\">critical data<\/span><\/a><span style=\"font-weight: 400\"> an attacker could drain from your network during that time.<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">In one case,<\/span><a href=\"https:\/\/www.computerweekly.com\/news\/252436626\/Fileless-attacks-surge-as-hackers-exploit-PowerShell-scripts\" target=\"_blank\" rel=\"noopener noreferrer\"> <span style=\"font-weight: 400\">hackers<\/span><\/a><span style=\"font-weight: 400\"> used an obfuscated PowerShell infrastructure to drop fileless malware on targeted computers, which in turn fetched payloads from a command-and-control server. This created a very effective advanced persistent threat (<\/span><a href=\"https:\/\/en.wikipedia.org\/wiki\/Advanced_persistent_threat\" target=\"_blank\" rel=\"noopener noreferrer\"><span style=\"font-weight: 400\">APT<\/span><\/a><span style=\"font-weight: 400\">) that allowed the attackers to operate undetected for half a year, with data being exfiltrated all the while. And because a trusted program executed the commands, security staff, and the tools they used all assumed the commands were legitimate.<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">One roadblock to their persistence is that fileless malware lives in dynamic memory. In theory, regular system reboots should flush it. But today\u2019s craftier cybercriminals have even devised ways for their code to linger after a reboot.<\/span><\/p>\n<h3 style=\"text-align: justify\"><b>A Cutting-Edge Fight: UEBA vs. Fileless Malware<\/b><\/h3>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Since this evolved breed of malware can evade traditional detection tools and techniques, it\u2019s critical to look beyond the standard checkpoints: signatures, prewritten rules, disk scanning, and the like. Instead, tracking the activity of those having administrator and super user privileges to detect <\/span><i><span style=\"font-weight: 400\">anomalous behavior can yield the most positive results<\/span><\/i><span style=\"font-weight: 400\">. After all, these account credentials are just as susceptible to being hacked.<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Perhaps one such user uncharacteristically accesses different databases or systems in sensitive areas such as HR or finance. That could be an indicator of compromise (<\/span><a href=\"https:\/\/en.wikipedia.org\/wiki\/Indicator_of_compromise\" target=\"_blank\" rel=\"noopener noreferrer\"><span style=\"font-weight: 400\">IoC<\/span><\/a><span style=\"font-weight: 400\">). By automatically and swiftly alerting your<\/span><a href=\"https:\/\/www.exabeam.com\/incident-response\/cybersecurity-incident-response-plan\/\" target=\"_blank\" rel=\"noopener noreferrer\"> <span style=\"font-weight: 400\">incident response<\/span><\/a><span style=\"font-weight: 400\"> (IR) team, you could remediate the threat before the damage has been done.<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">UEBA can monitor user activity as well as the behavior of applications and services. This includes inter-process communications, unauthorized requests to run applications, changes made to credentials or permission levels, and other uncharacteristic behavior.<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">A new genus of malware has emerged that breaks the rules of traditional detection and defense methods. By infiltrating the systems in manners undetectable to legacy security protocols, fileless malware presents unique challenges to security professionals. UEBA presents the best chance at protecting against such a threat.<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Rather than looking for malicious files, user and entity behavior analytics offers the best solution by detecting anomalous behaviors or entities can indicate the presence of malware. Unlike conventional security monitoring tools that scan disks and use signatures or rules,<\/span><a href=\"https:\/\/www.exabeam.com\/product\/exabeam-advanced-analytics\/\" target=\"_blank\" rel=\"noopener noreferrer\"> <span style=\"font-weight: 400\">behavioral modeling and machine learning<\/span><\/a><span style=\"font-weight: 400\"> offer the best opportunity to identify anomalous and suspicious user and entity behaviors.<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">UEBA\u2019s automated, around-the-clock monitoring can alert your security team of a fileless malware attack. <\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">So, yes. Fileless malware attacks are the current future, but it is a future we have the power to <a href=\"https:\/\/solutionsreview.com\/endpoint-security\/5-critical-next-gen-endpoint-security-capabilities-for-businesses\/\" target=\"_blank\" rel=\"noopener noreferrer\">prevent<\/a> through smart, innovative cybersecurity tactics.<\/span><\/p>\n<p style=\"text-align: justify\"><div class=\"hr hr\"><\/div><\/p>\n<p style=\"text-align: justify\">Thank you to <a href=\"https:\/\/www.exabeam.com\/author\/ex_pramod\/\" target=\"_blank\" rel=\"noopener noreferrer\">Pramod Borkar<\/a> of <a href=\"https:\/\/www.exabeam.com\/\" target=\"_blank\" rel=\"noopener noreferrer\">Exabeam<\/a> for his time and expertise!<\/p>\n<p><span style=\"font-weight: 400\"><div class=\"widget\"><div class=\"aside-card\">\t\t\t<div class=\"textwidget\"><p><a class=\"#\" href=\"https:\/\/solutionsreview.com\/endpoint-security\/free-endpoint-protection-buyers-guide\/\" target=\"_blank\" rel=\"noopener\"><img loading=\"lazy\" decoding=\"async\" class=\"alignleft size-full wp-image-1682\" src=\"https:\/\/solutionsreview.com\/endpoint-security\/files\/2019\/01\/endpoint-security-speedbump-cta.jpg\" alt=\"Download Link to Endpoint Security Buyer's Guide\" width=\"800\" height=\"225\" \/><\/a><\/p>\n<\/div>\n\t\t<\/div><\/div><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>By Pramod Borkar of Exabeam Yes, and most certainly yes. Fileless malware attacks are on the rise but they can also be stopped. According to research by the Ponemon Institute, fileless malware attacks accounted for about 35 percent of all cyberattacks in 2018, and they are almost 10 times more likely to succeed than file-based [&hellip;]<\/p>\n","protected":false},"author":41,"featured_media":3919,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"footnotes":""},"categories":[2,335],"tags":[31,75,226,22,13,40,753,30,161,94,1024,84,501],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v23.5 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Is Fileless Malware the Future? And Can It Be Stopped?<\/title>\n<meta name=\"description\" content=\"Fileless malware attacks are on the rise but they can also be stopped. Pramod Borkar of Exabeam explores what your enterprise can do.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/solutionsreview.com\/endpoint-security\/is-fileless-malware-the-future-and-can-it-be-stopped\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Is Fileless Malware the Future? And Can It Be Stopped?\" \/>\n<meta property=\"og:description\" content=\"Fileless malware attacks are on the rise but they can also be stopped. Pramod Borkar of Exabeam explores what your enterprise can do.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/solutionsreview.com\/endpoint-security\/is-fileless-malware-the-future-and-can-it-be-stopped\/\" \/>\n<meta property=\"og:site_name\" content=\"Best Endpoint Protection Security (EPP) Tools, Software, Solutions &amp; Vendors\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/solutionsreview\" \/>\n<meta property=\"article:published_time\" content=\"2019-05-09T18:37:19+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2019-06-24T18:21:11+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/solutionsreview.com\/endpoint-security\/files\/2019\/05\/fileless-malware-mod.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"800\" \/>\n\t<meta property=\"og:image:height\" content=\"400\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Ben Canner\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@InfoSec_Review\" \/>\n<meta name=\"twitter:site\" content=\"@InfoSec_Review\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Ben Canner\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/is-fileless-malware-the-future-and-can-it-be-stopped\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/is-fileless-malware-the-future-and-can-it-be-stopped\/\"},\"author\":{\"name\":\"Ben Canner\",\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/#\/schema\/person\/357f925262827fcf840b4341920a1541\"},\"headline\":\"Is Fileless Malware the Future? And Can It Be Stopped?\",\"datePublished\":\"2019-05-09T18:37:19+00:00\",\"dateModified\":\"2019-06-24T18:21:11+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/is-fileless-malware-the-future-and-can-it-be-stopped\/\"},\"wordCount\":867,\"publisher\":{\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/#organization\"},\"image\":{\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/is-fileless-malware-the-future-and-can-it-be-stopped\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/solutionsreview.com\/endpoint-security\/files\/2019\/05\/fileless-malware-mod.jpg\",\"keywords\":[\"Best Practices\",\"Cybersecurity\",\"EDR\",\"Endpoint Protection\",\"Endpoint Security\",\"EPP\",\"Exabeam\",\"Hacks and Attacks\",\"Infosec\",\"Malware\",\"Pramod Borkar\",\"Security\",\"UEBA\"],\"articleSection\":[\"Best Practices\",\"Featured\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/is-fileless-malware-the-future-and-can-it-be-stopped\/\",\"url\":\"https:\/\/solutionsreview.com\/endpoint-security\/is-fileless-malware-the-future-and-can-it-be-stopped\/\",\"name\":\"Is Fileless Malware the Future? And Can It Be Stopped?\",\"isPartOf\":{\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/is-fileless-malware-the-future-and-can-it-be-stopped\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/is-fileless-malware-the-future-and-can-it-be-stopped\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/solutionsreview.com\/endpoint-security\/files\/2019\/05\/fileless-malware-mod.jpg\",\"datePublished\":\"2019-05-09T18:37:19+00:00\",\"dateModified\":\"2019-06-24T18:21:11+00:00\",\"description\":\"Fileless malware attacks are on the rise but they can also be stopped. Pramod Borkar of Exabeam explores what your enterprise can do.\",\"breadcrumb\":{\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/is-fileless-malware-the-future-and-can-it-be-stopped\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/solutionsreview.com\/endpoint-security\/is-fileless-malware-the-future-and-can-it-be-stopped\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/is-fileless-malware-the-future-and-can-it-be-stopped\/#primaryimage\",\"url\":\"https:\/\/solutionsreview.com\/endpoint-security\/files\/2019\/05\/fileless-malware-mod.jpg\",\"contentUrl\":\"https:\/\/solutionsreview.com\/endpoint-security\/files\/2019\/05\/fileless-malware-mod.jpg\",\"width\":800,\"height\":400,\"caption\":\"CrowdStrike Releases 2021 Threat Hunting Report from Falcon OverWatch\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/is-fileless-malware-the-future-and-can-it-be-stopped\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/solutionsreview.com\/endpoint-security\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Is Fileless Malware the Future? And Can It Be Stopped?\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/#website\",\"url\":\"https:\/\/solutionsreview.com\/endpoint-security\/\",\"name\":\"Best Endpoint Protection Security (EPP) Tools, Software, Solutions &amp; Vendors\",\"description\":\"All the Latest News, Best Practices and Buyer&#039;s Guides for Endpoint Security and Protection\",\"publisher\":{\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/solutionsreview.com\/endpoint-security\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/#organization\",\"name\":\"Solutions Review\",\"url\":\"https:\/\/solutionsreview.com\/endpoint-security\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/solutionsreview.com\/endpoint-security\/files\/2016\/05\/SR_Icon.png\",\"contentUrl\":\"https:\/\/solutionsreview.com\/endpoint-security\/files\/2016\/05\/SR_Icon.png\",\"width\":200,\"height\":200,\"caption\":\"Solutions Review\"},\"image\":{\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/solutionsreview\",\"https:\/\/x.com\/InfoSec_Review\",\"https:\/\/www.linkedin.com\/company\/cyber-security-solutions-review\",\"https:\/\/www.youtube.com\/user\/SolutionsReview\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/#\/schema\/person\/357f925262827fcf840b4341920a1541\",\"name\":\"Ben Canner\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g\",\"caption\":\"Ben Canner\"},\"description\":\"Ben Canner is an enterprise technology writer and analyst covering Identity Management, SIEM, Endpoint Protection, and Cybersecurity writ large. He holds a Bachelor of Arts Degree in English from Clark University in Worcester, MA. He previously worked as a corporate blogger and ghost writer. You can reach him via Twitter and LinkedIn.\",\"url\":\"https:\/\/solutionsreview.com\/endpoint-security\/author\/bcanner\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Is Fileless Malware the Future? And Can It Be Stopped?","description":"Fileless malware attacks are on the rise but they can also be stopped. Pramod Borkar of Exabeam explores what your enterprise can do.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/solutionsreview.com\/endpoint-security\/is-fileless-malware-the-future-and-can-it-be-stopped\/","og_locale":"en_US","og_type":"article","og_title":"Is Fileless Malware the Future? And Can It Be Stopped?","og_description":"Fileless malware attacks are on the rise but they can also be stopped. Pramod Borkar of Exabeam explores what your enterprise can do.","og_url":"https:\/\/solutionsreview.com\/endpoint-security\/is-fileless-malware-the-future-and-can-it-be-stopped\/","og_site_name":"Best Endpoint Protection Security (EPP) Tools, Software, Solutions &amp; Vendors","article_publisher":"https:\/\/www.facebook.com\/solutionsreview","article_published_time":"2019-05-09T18:37:19+00:00","article_modified_time":"2019-06-24T18:21:11+00:00","og_image":[{"width":800,"height":400,"url":"https:\/\/solutionsreview.com\/endpoint-security\/files\/2019\/05\/fileless-malware-mod.jpg","type":"image\/jpeg"}],"author":"Ben Canner","twitter_card":"summary_large_image","twitter_creator":"@InfoSec_Review","twitter_site":"@InfoSec_Review","twitter_misc":{"Written by":"Ben Canner","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/solutionsreview.com\/endpoint-security\/is-fileless-malware-the-future-and-can-it-be-stopped\/#article","isPartOf":{"@id":"https:\/\/solutionsreview.com\/endpoint-security\/is-fileless-malware-the-future-and-can-it-be-stopped\/"},"author":{"name":"Ben Canner","@id":"https:\/\/solutionsreview.com\/endpoint-security\/#\/schema\/person\/357f925262827fcf840b4341920a1541"},"headline":"Is Fileless Malware the Future? And Can It Be Stopped?","datePublished":"2019-05-09T18:37:19+00:00","dateModified":"2019-06-24T18:21:11+00:00","mainEntityOfPage":{"@id":"https:\/\/solutionsreview.com\/endpoint-security\/is-fileless-malware-the-future-and-can-it-be-stopped\/"},"wordCount":867,"publisher":{"@id":"https:\/\/solutionsreview.com\/endpoint-security\/#organization"},"image":{"@id":"https:\/\/solutionsreview.com\/endpoint-security\/is-fileless-malware-the-future-and-can-it-be-stopped\/#primaryimage"},"thumbnailUrl":"https:\/\/solutionsreview.com\/endpoint-security\/files\/2019\/05\/fileless-malware-mod.jpg","keywords":["Best Practices","Cybersecurity","EDR","Endpoint Protection","Endpoint Security","EPP","Exabeam","Hacks and Attacks","Infosec","Malware","Pramod Borkar","Security","UEBA"],"articleSection":["Best Practices","Featured"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/solutionsreview.com\/endpoint-security\/is-fileless-malware-the-future-and-can-it-be-stopped\/","url":"https:\/\/solutionsreview.com\/endpoint-security\/is-fileless-malware-the-future-and-can-it-be-stopped\/","name":"Is Fileless Malware the Future? And Can It Be Stopped?","isPartOf":{"@id":"https:\/\/solutionsreview.com\/endpoint-security\/#website"},"primaryImageOfPage":{"@id":"https:\/\/solutionsreview.com\/endpoint-security\/is-fileless-malware-the-future-and-can-it-be-stopped\/#primaryimage"},"image":{"@id":"https:\/\/solutionsreview.com\/endpoint-security\/is-fileless-malware-the-future-and-can-it-be-stopped\/#primaryimage"},"thumbnailUrl":"https:\/\/solutionsreview.com\/endpoint-security\/files\/2019\/05\/fileless-malware-mod.jpg","datePublished":"2019-05-09T18:37:19+00:00","dateModified":"2019-06-24T18:21:11+00:00","description":"Fileless malware attacks are on the rise but they can also be stopped. Pramod Borkar of Exabeam explores what your enterprise can do.","breadcrumb":{"@id":"https:\/\/solutionsreview.com\/endpoint-security\/is-fileless-malware-the-future-and-can-it-be-stopped\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/solutionsreview.com\/endpoint-security\/is-fileless-malware-the-future-and-can-it-be-stopped\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/endpoint-security\/is-fileless-malware-the-future-and-can-it-be-stopped\/#primaryimage","url":"https:\/\/solutionsreview.com\/endpoint-security\/files\/2019\/05\/fileless-malware-mod.jpg","contentUrl":"https:\/\/solutionsreview.com\/endpoint-security\/files\/2019\/05\/fileless-malware-mod.jpg","width":800,"height":400,"caption":"CrowdStrike Releases 2021 Threat Hunting Report from Falcon OverWatch"},{"@type":"BreadcrumbList","@id":"https:\/\/solutionsreview.com\/endpoint-security\/is-fileless-malware-the-future-and-can-it-be-stopped\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/solutionsreview.com\/endpoint-security\/"},{"@type":"ListItem","position":2,"name":"Is Fileless Malware the Future? And Can It Be Stopped?"}]},{"@type":"WebSite","@id":"https:\/\/solutionsreview.com\/endpoint-security\/#website","url":"https:\/\/solutionsreview.com\/endpoint-security\/","name":"Best Endpoint Protection Security (EPP) Tools, Software, Solutions &amp; Vendors","description":"All the Latest News, Best Practices and Buyer&#039;s Guides for Endpoint Security and Protection","publisher":{"@id":"https:\/\/solutionsreview.com\/endpoint-security\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/solutionsreview.com\/endpoint-security\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/solutionsreview.com\/endpoint-security\/#organization","name":"Solutions Review","url":"https:\/\/solutionsreview.com\/endpoint-security\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/endpoint-security\/#\/schema\/logo\/image\/","url":"https:\/\/solutionsreview.com\/endpoint-security\/files\/2016\/05\/SR_Icon.png","contentUrl":"https:\/\/solutionsreview.com\/endpoint-security\/files\/2016\/05\/SR_Icon.png","width":200,"height":200,"caption":"Solutions Review"},"image":{"@id":"https:\/\/solutionsreview.com\/endpoint-security\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/solutionsreview","https:\/\/x.com\/InfoSec_Review","https:\/\/www.linkedin.com\/company\/cyber-security-solutions-review","https:\/\/www.youtube.com\/user\/SolutionsReview"]},{"@type":"Person","@id":"https:\/\/solutionsreview.com\/endpoint-security\/#\/schema\/person\/357f925262827fcf840b4341920a1541","name":"Ben Canner","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/endpoint-security\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g","caption":"Ben Canner"},"description":"Ben Canner is an enterprise technology writer and analyst covering Identity Management, SIEM, Endpoint Protection, and Cybersecurity writ large. He holds a Bachelor of Arts Degree in English from Clark University in Worcester, MA. He previously worked as a corporate blogger and ghost writer. You can reach him via Twitter and LinkedIn.","url":"https:\/\/solutionsreview.com\/endpoint-security\/author\/bcanner\/"}]}},"_links":{"self":[{"href":"https:\/\/solutionsreview.com\/endpoint-security\/wp-json\/wp\/v2\/posts\/3918"}],"collection":[{"href":"https:\/\/solutionsreview.com\/endpoint-security\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/solutionsreview.com\/endpoint-security\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/endpoint-security\/wp-json\/wp\/v2\/users\/41"}],"replies":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/endpoint-security\/wp-json\/wp\/v2\/comments?post=3918"}],"version-history":[{"count":0,"href":"https:\/\/solutionsreview.com\/endpoint-security\/wp-json\/wp\/v2\/posts\/3918\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/endpoint-security\/wp-json\/wp\/v2\/media\/3919"}],"wp:attachment":[{"href":"https:\/\/solutionsreview.com\/endpoint-security\/wp-json\/wp\/v2\/media?parent=3918"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/solutionsreview.com\/endpoint-security\/wp-json\/wp\/v2\/categories?post=3918"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/solutionsreview.com\/endpoint-security\/wp-json\/wp\/v2\/tags?post=3918"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}