Advanced volatile threat

From Wikipedia, the free encyclopedia
Jump to: navigation, search

Advanced Volatile Threats (AVT) are an advanced kind of cyberattack where the malicious code does not need to reach its victim's hard drive in order to deliver its payload.[1]

Traditional antivirus solutions depend on the presence of a file on the hard drive. That particularity makes this attack more potent than the related advanced persistent threat.[2]


The term Advanced Volatile Threats began being used publicly[3] following the release of a report by security firm Mandiant detailing the activity of APT1. The term "AVT" was coined by Triumfant CEO John Prisco.[4] Another example of this type of malware is CDorked.A, whose configuration data is held entirely in RAM and is never written to the hard drive.[5] Yet another example of this popular attack is the Hetzner case, when a popular hosting company was compromised using the same techniques.[6][7]

See also[edit]