4 comments

[ 0.69 ms ] story [ 17.7 ms ] thread
What prevents Russian Hackers to set their locale to en_US for using specific hacking tools?
Of course changing the language is easy, but in a defensive scenario, Florian Roth argues that a big organisation would not change the language of their 1000+ assets in order run a malware scanner.
That would not be necessary, they'd just have to change it for that specific scanner.

Even the example shows how easy that is (just prepend `LANG=en_US ` to the command of the malware)