๐ An Overview of WMI Hijacking Techniques in Modern Malware
๐ก Newskategorie: IT Security Nachrichten
๐ Quelle: labs.bitdefender.com
The discovery of Stuxnet in 2010, followed by its in-depth analysis, uncovered several โindustry firstsโ, including hijacking of Windows Management Instrumentation (WMI) to enumerate users and spread to available network shares. In the past decade, most of the malware features at least one technique to hijack WMI for persistence, discovery, lateral movement or defense evasion. [โฆ] ...