“Malware Free” Attacks on the Rise
In 44% of cyberattack incidents, attackers tend to deploy malware. However, in the remaining 56% of events, scripting frameworks (like PowerShell) and remote monitoring and management (RMM) software were used along with “living off the land” binaries (LOLBins).
The increased use of RMM software has turned out to be a concerning trend that is challenging to reverse.
“At the SMB level, LOLBin use is especially concerning given the state of monitoring and review for many organizations. Many critical entities—from local school districts to medical offices—may find themselves at best leveraged for cryptomining or botnet purposes, and at worst, the victims of disruptive ransomware,” the researchers noted.
The researchers notes that in over 65% of security incidents, threat actors utilize RMM software as their methods for persistence or remote access mechanisms following the initial access to the victim user’s system.
Since RMM too
[…]
Content was cut in order to protect the source.Please visit the source for the rest of the article.