Memory-scraping malware is a type of malware that helps hackers to find personal data. It examines memory to search for sensitive data that is not available through other processes.
In 2011, the SANS Institute declared memory scraping to be one of the most dangerous attack techniques in use. Though data encryption is widely used to secure data, memory scraping finds weak areas from which it can take data. For example, some memory-scraping malware steals encrypted data from applications through which the data passed unencrypted. This renders many typical security attempts useless.
In order to avoid weakness in the face of memory-scraping malware, it’s suggested that users use a secure web browser with a memory sandbox or simply avoid putting secure data on a computer in the first place.
SearchSecurity.com has tips on combating memory-scraping malware.