Welcome to our

Cyber Security News Aggregator

.

Cyber Tzar

provide a

cyber security risk management

platform; including automated penetration tests and risk assesments culminating in a "cyber risk score" out of 1,000, just like a credit score.

Keylogger Data Stored in an ADS, (Tue, Jul 15th)

published on 2025-07-15 07:32:44 UTC by
Content:
If many malware samples try to be "filess" (read: they try to reduce their filesystem footprint to the bare minimum), another technique remains interesting: Alternate Data Streams or "ADS"[1]. This NTFS feature allows files to contain multiple data streams, enabling hidden or additional metadata to be stored alongside the main file content without being visible in standard file listings. A common usage of ADS is the "Mark of the Web"[2] that helps to flag files as suspicious or not depending on their origin.
Article: Keylogger Data Stored in an ADS, (Tue, Jul 15th) - published 3 months ago.

https://isc.sans.edu/diary/rss/32108   
Published: 2025 07 15 07:32:44
Received: 2025 07 15 09:54:39
Feed: SANS Internet Storm Center, InfoCON: green
Source: SANS Internet Storm Center, InfoCON: green
Category: Alerts
Topic: Vulnerabilities
Views: 12

Custom HTML Block

Click to Open Code Editor