From PDB strings to MaaS: Tracking a commodity BadIIS ecosystem used by Chinese
Source: Blog.Talosintelligence
Published:
<p>Since 2024, Talos has investigated numerous attacks across the Asia-Pacific region (along with a few in South Africa, Europe and North America) that utilize a specific variant of BadIIS characterized by "demo.pdb" strings. While multiple security vendors are tracking the global spread of these va