Fileless Malware seems to be catching out traditional end point defences. Features of apps that have been around for years are suddenly hitting the headlines as attackers make use of them to evade detection. Let's have a discussion on the following: 

What can be done about this? Hook more of the o/s interfaces to intercept more malicious activity? Wait until the attack gets going and spot in in action? Keep the attacks off the end point? Attendance is strictly limited to allow for a small group experience.