The Rise of Fileless Malware Delivery and the Need for Better Defences

Fitzrovia IT recently teamed up to conduct a case study with security partner Custodian360, the leading solution for managed endpoint security. Our Head of Technical, Dan Kent, discusses the rise of fileless malware threats and the steps firms need to take to prevent permanent damage. Check out the case study below.

Fileless malware is a type of malicious software that is able to bypass most security measures by residing within a user’s PC, exploiting existing systems including the RAM and registry.

This year has seen a reported 265% increase in fileless malware threats compared to the first half of 2018. Increasingly sophisticated in its delivery and difficult to detect, fileless malware has become a major security concern for businesses across all sectors.

Preventing permanent damage to your business

With detection of fileless malware a challenging endeavour, prevention is a strong first step to reducing the risk of permanent damage to your business. This starts with proper user training.

“Fundamentally, the biggest security-related challenge is the vulnerability that sits in the chair,” said Dan Kent, Head of Technical for Fitzrovia IT, a leading IT support company in London.

“People – human error – are typically the catalyst for a PC getting a virus. That’s why end-user training is so important. You need to make sure your staff know what to look out for and how to recognise when something is not right,” he said.

In addition to end-user training, it is essential to consistently review your company’s IT security policies, taking into consideration:

• Do you have a strong disaster recovery plan in place?
• Is your business Cyber Essentials accredited?
• If your company has a ‘Bring Your Own Device’ policy, do you have proper MDM and Security policies installed?
• Are you working with a dedicated IT support provider?

Keeping your systems properly patched and up to date can also prevent exploitation of vulnerabilities by fileless malware.

“All these things matter and can make a difference, no matter how small,” said Dan. “All areas of security must be aligned in order to prevent large-scale breaches and irreversible damage.”

How Custodian360 can help

To properly combat fileless malware delivery, enhanced services and defences are needed. Solutions like Custodian360 are able to spot and stop infectious malware immediately, identifying potential behaviour-based risks in real time.

“Custodian360 have been incredibly effective at preventing fileless malware,” said Dan. “In environments with Custodian360 running alongside alternative products, Custodian360 is able to catch and quarantine issues that the other systems don’t see.”

“Custodian360 is a great example of how machine learning and artificial intelligence can provide advanced methods of threat detection, delivering full-coverage protection for your business.