<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom"><channel><title>Living-Off-the-Land on HackingPassion.com : root@HackingPassion.com-[~]</title><link>https://hackingpassion.com/tags/living-off-the-land/</link><description>Recent content in Living-Off-the-Land on HackingPassion.com : root@HackingPassion.com-[~]</description><generator>Hugo</generator><language>en</language><lastBuildDate>Sat, 11 Apr 2026 12:52:30 +0200</lastBuildDate><atom:link href="https://hackingpassion.com/tags/living-off-the-land/index.xml" rel="self" type="application/rss+xml"/><item><title>DesckVB RAT Uses Windows' Own Tools to Stay Hidden and Leaves Almost Nothing Behind</title><link>https://hackingpassion.com/desckvb-rat-fileless-malware-2026/</link><pubDate>Sat, 11 Apr 2026 12:52:30 +0200</pubDate><guid>https://hackingpassion.com/desckvb-rat-fileless-malware-2026/</guid><description>&lt;p>A Remote Access Trojan called DesckVB has been actively hitting systems throughout 2026, running almost entirely inside memory with barely anything written to disk, hiding its final payload inside a process it names &lt;strong>Microsoft.exe&lt;/strong>, and attempting to switch off the camera LED before streaming video back to the attacker. A cracked version of the builder is already circulating freely, meaning attackers with minimal skills can deploy this today without writing a single line of code. Forensics teams sweep these machines afterward and find very little. The system looks completely clean. 😏&lt;/p></description></item></channel></rss>