"Fileless PowerShell malware uses DNS as covert channel"

Cyberattacks are becoming increasingly harder to detect as shown by the latest attack, DNSMessenger.  Researchers from Cisco Systems’ Talos team have discovered the DNSMessenger, which is distributed through email phishing tactics and when opened, allows malicious activity to be launched with PowerShell script. This article discusses the capabilities of this new attack, the difficulties of detection, and the importance of filtering network protocols.
 

http://www.computerworld.com/article/3176669/security/fileless-powershell-malware-uses-dns-as-covert-channel.html