Stories
Slash Boxes
Comments

SoylentNews is people

posted by Fnord666 on Wednesday February 26 2020, @04:29PM   Printer-friendly
from the will-it-detect-windows-installers? dept.

Arthur T Knackerbracket has found the following story:

Hey, Linux fans! Microsoft has got your back over fileless threats. Assuming you've bought into the whole Azure Security Center thing.

Hot on the heels of a similar release for Windows (if by "hot" you mean "nearly 18 months after") comes a preview aimed at detecting that breed of malware that inserts itself into memory before attempting to hide its tracks.

[...] Microsoft's detection feature scans the memory of all processes for the tell-tale footprint of a fileless toolkit, shrieking a warning in the Azure Security Center along with some details of the nasty. An admin can then decide what action to take (and what further investigation is needed).

The scan, according to the Windows giant, is not invasive and the "vast majority" take less than five seconds to run. More importantly for the those fearful of slurpage, memory analysis is performed on the host itself and the results only contain "security-relevant metadata and details of suspicious payloads".


Original Submission

 
This discussion has been archived. No new comments can be posted.
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
  • (Score: 0) by Anonymous Coward on Wednesday February 26 2020, @09:27PM

    by Anonymous Coward on Wednesday February 26 2020, @09:27PM (#963101)

    I find the coats to be of significantly different consistency and quality. And the systemd users keep screaming when I use the sheep shears on them. And the sheep get nervous when they see the systemd users eyeing them.