This Harry Potter-Named Attack Runs Fileless Malware

[lokamoka820]

Content source

https://www.makeuseof.com/this-harry-potter-named-attack-runs-fileless-malware/

The legend of He-Who-Shall-Not-Be-Named may only be true in the Harry Potter book, but his influence has managed to escape into the real world. Not as a wizard—but as a nasty piece of malware.

But what is the Voldemort fileless malware, and how can you stay safe?

Quick Links​

• What Is Fileless Malware?
• How Does the Voldemort Malware Work?
• How to Stay Safe From Voldemort Malware

 

[Jonny Quest]

Interesting little factoid from the article, which I didn't know, or at least have considered.

If you accidentally download the fake PDF, you can still delete it without launching the malware. You can tell if it's a fake PDF because of the little "shortcut arrow" at the bottom left of the icon. Regular PDFs don't have that arrow because they're not a shortcut—they're the real deal. A hidden LNK file, on the other hand, counts as a shortcut and has a little arrow.

A nice security tip I learned from this forum is to show the downloaded file name extensions in Explorer, as another way of confirming things. Thank you all


@lokamoka820 thanks for the nice Quick Links you posted