my tweets are severely limited by my lack of understanding of what I am doing.
Because AV and next gen tools widely don't stop the exploit, attackers are starting to schedule tasks, WMI filters etc to stop sec products.
#EternalPot another Coin miner just dropped, uses scheduled task to deploy later.pic.twitter.com/7cffniJkoC
-
-
-
The idea is if you can stop the products before aiming for payload, you can stop detection. They're almost all really badly done attempts.
Koniec rozmowy
Nowa rozmowa -
-
-
I'm curious... wouldn't it be easier to hook the
#EternalPot to Tw API? I'll deff follow the tweets. ^_^ -
I could have a bot which just tweets mad shit, haha
- Pokaż odpowiedzi
Nowa rozmowa -
-
-
AV detects sometimes before its too late, what are preventive methods to not let it get there first? Monitor system files/processes?
#newbie -
Or try educate the userbase more as best as possible to make them more aware of the risks?
Koniec rozmowy
Nowa rozmowa -
Wydaje się, że ładowanie zajmuje dużo czasu.
Twitter jest przeciążony lub wystąpił chwilowy problem. Spróbuj ponownie lub sprawdź status Twittera, aby uzyskać więcej informacji.