Hacker News new | ask | show | jobs
by g___ 1018 days ago
"In addition to targeting researchers with 0-day exploits, the threat actors also developed a standalone Windows tool that has the stated goal of 'download debugging symbols from Microsoft, Google, Mozilla and Citrix symbol servers for reverse engineers.'

The attackers used a 0-day but getsymbol is not one.
1 comments
saagarjha 1017 days ago
Yep, that’s what I said.
link
edgyquant 1016 days ago
No it isn’t what you said at all. You said Google was calling malware a zero day and you believe them, but they aren’t doing this.
link
saagarjha 1015 days ago
This is what I said:

> The 0-day is in a popular software package.

(I have no idea what this is.)

> The GitHub repo apparently contains a backdoor ability to execute code from the attacker.

(This is what Google says and I think it’s the autoupdater.)

Is this different than what you feel?

link