2 Apr
2024
2 Apr
'24
16:52
Hi, just to emphasize one important point here:
Unfortunately, the dark side™ will also learn from this incident and probably be smarter about this next time to avoid detection (and to make the malware more readily available through any means of fetching the source code).
This is the important part. Any suggestion that is going to address the current way of distributing a backdoor is just playing a catchup game. what is actually needed is to make it harder to have another attack elsewhere. All methods used here can be considered burned now. We need to anticipate what the *next* attack is going to look like, and prepare for *that* one. Greetings, Dirk