Attention: You are using an outdated browser, device or you do not have the latest version of JavaScript downloaded and so this website may not work as expected. Please download the latest software or switch device to avoid further issues.

News > Attacks & Threats > RMM Abuse Explodes as Hackers Ditch Malware

RMM Abuse Explodes as Hackers Ditch Malware

Remote monitoring and management (RMM) software offers hackers multiple benefits, including stealth, persistence, and operational efficiency.
18 Feb 2026
Written by Gabi Gerber
Attacks & Threats

Featured

Security Operation Center, Hacking Topics

That's essentially the attitude of threat actors, who last year shifted heavily toward abusing remote monitoring and management (RMM) tools and away from traditional malware. Huntress researchers observed a whopping 277% year-over-year increase in RMM abuse, according to the company's 2026 Cyber Threat Report. More here

Similar Stories

Attacks & Threats

'TrustFall' Convention Exposes Claude Code Execution Risk

Malicious repositories can trigger code execution in Claude Code, Cursor CLI, Gemini CLI, and CoPilot CLI with minimal or no user interaction, thanks to skimpy warning dialogs. More...
Hackers Use AI for Exploit Development, Attack Automation

Cyber adversaries have long used AI, but now attackers are using large language models to develop exploits and orchestra… More...
Microsoft Edge Stores Passwords in Process Memory, Posing Enterprise Risk

A proof-of-concept exploit (PoC) shows how someone with admin privileges can exploit the issue to steal passwords, and t… More...
If AI's So Smart, Why Does It Keep Deleting Production Databases?

The issue isn't artificial intelligence, but rather an industry adding AI agent integrations into production environment… More...
Bad Memories Still Haunt AI Agents

Cisco found and fixed a significant vulnerability in the way Anthropic handles memories, but experts warn that mishandle… More...

Have your say

 

News Categories

Attacks & Threats

'TrustFall' Convention Exposes Claude Code Execution Risk

Malicious repositories can trigger code execution in Claude Code, Cursor CLI, Gemini CLI, and CoPilot CLI with minimal or no user interaction, thanks to skimpy warning dialogs. More...
Hackers Use AI for Exploit Development, Attack Automation

Cyber adversaries have long used AI, but now attackers are using large language models to develop exploits and orchestra… More...
Microsoft Edge Stores Passwords in Process Memory, Posing Enterprise Risk

A proof-of-concept exploit (PoC) shows how someone with admin privileges can exploit the issue to steal passwords, and t… More...
If AI's So Smart, Why Does It Keep Deleting Production Databases?

The issue isn't artificial intelligence, but rather an industry adding AI agent integrations into production environment… More...
Bad Memories Still Haunt AI Agents

Cisco found and fixed a significant vulnerability in the way Anthropic handles memories, but experts warn that mishandle… More...

Show more
image

Contact Us

Security Interest Group Switzerland
c/o Bridge Head AG
Sulzbergstrasse 34
5430 Wettingen
Switzerland

Quick Links

Terms
Contact Us
Privacy Policy
Newsletter

Follow Us

This website is powered by
ToucanTech