NSA warns against silly mistake in the fight against Windows malware

0
7



Task automation platform PowerShell, which is often abused by threat actors distributing malware (opens in new tab), can also be used for attack detection and prevention. This is the advice the US National Security Agency (NSA) recently gave to system administrators everywhere. 

Alongside cybersecurity centers in the UK and New Zealand, the NSA published a security advisory in which it argues that blocking PowerShell, a common security practice, actually lowers organizations’ defensive capabilities against ransomware (opens in new tab) and other forms of cyberattacks.



Source link