timothy from the come-into-my-parlor-said-the-spider-to-the-fly dept.
ancientribe writes "A couple of college interns have discovered that remote administration tools (RATs) often used for cyberspying and targeted cyberattacks contain common flaws that ultimately could be exploited to help turn the tables on the attackers. RATs conduct keylogging, screen and camera capture, file management, code execution, and password-sniffing, and give the attacker a foothold in the infected machine as well as the targeted organization. This new research opens the door for incident responders to detect these attacker tools in their network and fight back."
If it happens once, it's a bug. If it happens twice, it's a feature.
If it happens more than twice, it's a design philosophy.