Canadian Centre for Cyber Security Advisory on Fileless Malware

The Canadian Centre for Cyber Security (CCCS) has released an advisory on an Astaroth fileless malware campaign affecting Microsoft Windows. Astaroth resides solely in memory, and an attacker can use it and other fileless malware to steal information, such as credentials and keystrokes, and obtain other sensitive data. The U.S. Department of Homeland Security Cybersecurity and Infrastructure Security Agency (CISA), which includes the National Cybersecurity and Communications Integration Center (NCCIC), encourages administrators to review the advisory for potential infection vectors and mitigation measures. It also refers partners to CISA’s Security Tip on Protecting Against Malicious Code. Read the advisory at CCCS.