Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Security
Video Reviews - Security and Privacy
Microsoft Defender- A Possible Future
Message
<blockquote data-quote="Andy Ful" data-source="post: 1017713" data-attributes="member: 32260"><p>My comment would be the same as in this thread. The technique of abusing Microsoft Defender exclusions is used in the wild (in targeted attacks) for several years to obtain persistence and lateral movement. It is nothing new and uncommon. The "unpleasant possibility" is that this technique could be possibly used in widespread attacks (not targeted or personalized) as a part of initial malware, like in this thread. For now, I cannot see evidence for that. The widespread attack (spray and pray) with info stealer does not make much sense, because such malware will attack also computers of experts, malware hunters, and advanced users. So, it will not be long living. That is why such malware as RedLine Stealer is usually distributed as cracked games, applications, ADs, or services. Of course, this can change in the future. I think that Microsoft should strengthen the protection against such threats, but this will probably happen to protect business users (not home users).</p></blockquote><p></p>
[QUOTE="Andy Ful, post: 1017713, member: 32260"] My comment would be the same as in this thread. The technique of abusing Microsoft Defender exclusions is used in the wild (in targeted attacks) for several years to obtain persistence and lateral movement. It is nothing new and uncommon. The "unpleasant possibility" is that this technique could be possibly used in widespread attacks (not targeted or personalized) as a part of initial malware, like in this thread. For now, I cannot see evidence for that. The widespread attack (spray and pray) with info stealer does not make much sense, because such malware will attack also computers of experts, malware hunters, and advanced users. So, it will not be long living. That is why such malware as RedLine Stealer is usually distributed as cracked games, applications, ADs, or services. Of course, this can change in the future. I think that Microsoft should strengthen the protection against such threats, but this will probably happen to protect business users (not home users). [/QUOTE]
Insert quotes…
Verification
Post reply
Top