Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Windows Defender Advanced Threat Hunting team Search For PLATINUM


  • Please log in to reply
6 replies to this topic

#1 tealover

tealover

  • Members
  • 174 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Chester, UK
  • Local time:01:19 AM

Posted 27 April 2016 - 11:03 AM

Here;s an interesting article on the above topic.

 

 

http://arstechnica.com/security/2016/04/hacking-group-platinum-used-windows-own-patching-system-against-it/?utm_source=howtogeek&utm_medium=email&utm_campaign=newsletter

 

 

 



BC AdBot (Login to Remove)

 


#2 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,271 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:08:19 PM

Posted 27 April 2016 - 02:00 PM

 

The PLATINUM group used this technique, which can work against Windows Server 2003 Service Pack 1, Windows Server 2008, Windows Server 2008 R2, Windows Vista, and Windows 7, in real-world attacks to better hide its efforts from analysis. This operating-system-provided hotpatching was found in malware attacking systems in Malaysia earlier this year.

 

The hotpatching capability was removed in Windows 8, and subsequent versions of the operating system do not support it.

.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#3 ScathEnfys

ScathEnfys

    Bleeping Butterfly


  • Members
  • 1,375 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Deep in the Surface Web
  • Local time:08:19 PM

Posted 27 April 2016 - 10:21 PM

That being said, Win7 is still highly used (heck I'm using it on this crummy laptop), and Win XP is still in use on the registers at my grocery store. Just because systems are EoL doesn't mean they are no longer used...
Proud system builder, modder, and watercooler.

GitHub | SoundCloud | Keybase

#4 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,271 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:08:19 PM

Posted 28 April 2016 - 04:25 AM

Yes...I still use Windows 7 and will continue to do so.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#5 sikntired

sikntired

  • Members
  • 957 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:07:19 PM

Posted 28 April 2016 - 07:11 AM

+1 :thumbup2:  Just continue with safe-computing  guidelines. Many, many older machines are still utilized for useful purposes.



#6 tealover

tealover
  • Topic Starter

  • Members
  • 174 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Chester, UK
  • Local time:01:19 AM

Posted 01 June 2016 - 10:54 AM

Long live the Champion, Win 8.1



#7 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,271 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:08:19 PM

Posted 01 June 2016 - 06:07 PM

Whatever works for you is fine.


.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users