ESET discovered an undocumented backdoor used by the infamous Stealth Falcon group

Discussion in 'malware problems & news' started by guest, Sep 9, 2019.

  1. guest

    guest Guest

    ESET discovered an undocumented backdoor used by the infamous Stealth Falcon group
    September 9, 2019
    https://www.welivesecurity.com/2019/09/09/backdoor-stealth-falcon-group/
     
    Last edited by a moderator: Sep 9, 2019
  2. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    17,897
    Location:
    The Netherlands
    OK cool, but if you disable the BITS service, I suppose this method doesn't work. Of course, the status of services should also be monitored, because otherwise malware can simply enable/disable certain services.
     
  3. itman

    itman Registered Member

    Joined:
    Jun 22, 2010
    Posts:
    8,643
    Location:
    U.S.A.
    If you disable BITS on Win 10, you're going to bork a lot of stuff. Win Updates and other Microsoft processes use it to speed up downloads. Also some app software like AV software also use it for their downloads.
     
    Last edited: Sep 15, 2019
  4. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    17,897
    Location:
    The Netherlands
    Yes correct, but I don't often update Windows and avoid using AV's. But most people should indeed not disable this service.
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.