SoylentNews is people
SoylentNews
A large, multinational technology company got a nasty surprise recently as it was expanding its operations to China. The software a local bank required the company to install so it could pay local taxes contained an advanced backdoor.
The cautionary tale, detailed in a report published Thursday, said the software package, called Intelligent Tax and produced by Beijing-based Aisino Corporation, worked as advertised. Behind the scenes, it also installed a separate program that covertly allowed its creators to remotely execute commands or software of their choice on the infected computer. It was also digitally signed by a Windows trusted certificate.
[...]
Trustwave didn't identify the two companies that encountered GoldenSpy or the local Chinese bank that required that Intelligent Tax be installed. Representatives of Aisino Corporation didn't immediately respond to an email seeking comment for this post.
(Score: 2) by RamiK on Sunday June 28 2020, @12:39AM
The point is Microsoft is the one enabling it all: Banks used to rely on ActiveX via Internet Explorer to deliver their backdoored software and now they're baking it straight into their software and signing it with Microsoft's provided certificate and their approval.
We've all seen corporate boxes carrying 3 types of VNC clients each by a different software vendor... How OEMs routinely bake RDP clients into their driver support stacks... How Win10 eagerly collect everything and anything it can find on you... There's really nothing new about any of it. In fact, I'm sure it's covered by their EULA. All 10k words of it no doubt...
It's all just part of the Microsoft Windows norm for privacy and security.
compiling...