Fileless Cyberattacks Accounted for 51% of All Attacks in 2019

Cybersecurity experts are drawing attention to the growing popularity of cyberattacks that do not involve a traditional malicious software file. These techniques are known as fileless attacks.

In 2019, fileless attacks made up 51% of all cybercriminal campaigns, compared to just 40% in 2018.

According to researchers at CrowdStrike, attackers are increasingly relying on stolen credentials to gain access to corporate networks. These methods are commonly used by Chinese and North Korean cybercriminals, whose main goal is to steal trade secrets and intellectual property. The most frequent victims of such attacks are companies in North America, where 74% of intrusions occurred without the use of malware files.

The Global Threat Report 2020 from CrowdStrike analyzed cyberattacks in 176 countries, including some operations allegedly sponsored by governments. Experts believe that the absence of malware files in these campaigns renders traditional antivirus tools less effective as a primary defense.

Fileless attacks are those in which fragments of malicious code are not written to the victim’s disk. Instead, the code runs in memory, making it much harder to detect. This category also includes operations where attackers use compromised credentials for remote access.

About Fileless Attacks

• Fileless attacks do not leave traditional malware files on the victim’s system.
• Malicious code often executes directly in memory, evading many security tools.
• Attackers frequently use stolen credentials to access networks remotely.

As cybercriminals continue to evolve their tactics, organizations must look beyond traditional antivirus solutions and adopt more advanced security measures to protect against fileless threats.