SecurityBrief Australia - Technology news for CISOs & cybersecurity decision-makers
Australia

Fileless malware Stories

Australian Stories

Fileless malware stories

Phishing surge targets Gulf after Iran-Israel tensions
Malware

Phishing surge targets Gulf after Iran-Israel tensions

Phishing and malware activity has doubled in Gulf markets since late February, with attackers exploiting conflict themes to target finance and energy links.

By Mark Tarre 3 min read Thu, 26th Mar 2026

Global Stories

Fileless malware stories

Barracuda flags stealthy Microsoft 365 attack shift
Multi-factor authentication

Barracuda flags stealthy Microsoft 365 attack shift

Businesses are facing harder-to-spot intrusions as attackers use valid Microsoft 365 logins, fake AI sites and fileless malware to evade detection.

By Joseph Gabriel Lagonsin 4 min read Last month
Vega spots Weaver E-cology attacks within days of patch
Application Security

Vega spots Weaver E-cology attacks within days of patch

Attackers were exploiting a critical Weaver E-cology flaw within five days of the vendor patch, Vega said, with repeated attempts blocked.

By Joseph Gabriel Lagonsin 4 min read Last month
Upwind Expands to Sydney: Real Time Cloud Security for APJ
Hyperscale

Upwind Expands to Sydney: Real Time Cloud Security for APJ

The Sydney move follows a USD $250 million funding round as the cloud security firm bets on real-time protection for fast-growing AI workloads.

By Anthony Caruana 4 min read Last month
DeepLoad malware steals credentials via ClickFix campaign
Malware

DeepLoad malware steals credentials via ClickFix campaign

Businesses face credential theft and reinfection risks as DeepLoad hides inside trusted Windows processes and evades routine clean-up.

By Joseph Gabriel Lagonsin 4 min read Wed, 1st Apr 2026
ManageEngine adds EDR & Zero Trust access to platform
Malware

ManageEngine adds EDR & Zero Trust access to platform

ManageEngine folds EDR and Zero Trust private access into Endpoint Central, unifying endpoint management and security in one console.

By Joseph Gabriel Lagonsin 4 min read Fri, 20th Mar 2026
Cohesity adds Sophos scans to backup recovery tools
Malware

Cohesity adds Sophos scans to backup recovery tools

Cohesity bakes Sophos malware scanning into its Data Cloud to spot hidden threats in backups and cut reinfection risk during recovery.

By Joseph Gabriel Lagonsin 4 min read Fri, 20th Mar 2026
ManageEngine adds EDR & zero trust to Endpoint Central
Malware

ManageEngine adds EDR & zero trust to Endpoint Central

ManageEngine turns Endpoint Central into a unified endpoint security and access platform by adding built-in EDR and zero trust private access.

By Catherine Knowles 4 min read Thu, 19th Mar 2026
LeakNet adopts ClickFix lures & Deno fileless loader
Storage

LeakNet adopts ClickFix lures & Deno fileless loader

Ransomware group LeakNet adopts ClickFix lures and a Deno-based fileless loader to scale attacks and evade traditional endpoint defences.

By Sofiah Nichole Salivio 5 min read Thu, 19th Mar 2026
Attackers abuse Deno runtime to deploy fileless malware
Endpoint Detection and Response

Attackers abuse Deno runtime to deploy fileless malware

Hackers are abusing the trusted Deno JavaScript runtime to run fileless CastleRAT malware solely in memory and evade endpoint defences.

By Catherine Knowles 4 min read Thu, 12th Mar 2026
Kernel in the crosshairs: The BlackSanta threat campaign targeting recruitment workflows
Storage

Kernel in the crosshairs: The BlackSanta threat campaign targeting recruitment workflows

A stealthy BlackSanta malware spree is hijacking HR recruitment workflows, killing endpoint defence tools and exfiltrating sensitive data.

By Aditya K. Sood 4 min read Wed, 11th Mar 2026
LummaStealer returns post-takedown with ClickFix ruse
Multi-factor authentication

LummaStealer returns post-takedown with ClickFix ruse

LummaStealer roars back after domain takedown, using fake CAPTCHA ClickFix tricks and CastleLoader to spread via routine user actions.

By Karen Joy Bacudo 4 min read Fri, 13th Feb 2026
Google warns of AI model theft & state-backed misuse
Malware

Google warns of AI model theft & state-backed misuse

Google flags surging attempts to steal AI models as state-backed hackers weaponise Gemini for phishing, intel gathering and malware support.

By Sean Mitchell 6 min read Thu, 12th Feb 2026
Espionage Without Noise: Understanding APT36's Enduring Campaigns
Surveillance

Espionage Without Noise: Understanding APT36's Enduring Campaigns

Indian defence faces a decade-long silent siege as APT36 refines cross-platform cyber espionage with stealthy, persistent RAT campaigns.

By Dr Aditya Sood 5 min read Wed, 11th Feb 2026
LinkedIn DMs abused to spread Python-based malware
Firewalls

LinkedIn DMs abused to spread Python-based malware

Attackers are abusing LinkedIn private messages to deliver Python-based malware via booby-trapped archives, ReliaQuest has warned.

By Catherine Knowles 4 min read Wed, 21st Jan 2026
Storm-0249 hijacks security tools to fuel ransomware
Malware

Storm-0249 hijacks security tools to fuel ransomware

Storm-0249 hijacks trusted security and Windows tools to stealthily broker high-value network access for ransomware operators.

By Karen Joy Bacudo 5 min read Wed, 7th Jan 2026
Fake Leonardo DiCaprio torrent spreads Agent Tesla trojan
Endpoint Protection

Fake Leonardo DiCaprio torrent spreads Agent Tesla trojan

Fake torrents of Leonardo DiCaprio film One Battle After Another are spreading Agent Tesla malware that hijacks Windows PCs, experts warn.

By Sean Mitchell 5 min read Thu, 11th Dec 2025
CL0P hackers exploited Oracle EBS zero-day for data extortion
Firewalls

CL0P hackers exploited Oracle EBS zero-day for data extortion

Hackers linked to CL0P exploited an Oracle E-Business Suite zero-day from July 2025, stealing data and extorting dozens of organisations worldwide.

By Melvin Hipolito 4 min read Fri, 10th Oct 2025