如何看待微软承认签名了恶意驱动程序"Netfilter"？ 第1页

6月30日更新：两天前我的猜测“多半是哪家半吊子水平的游戏公司，拿rootkit做反盗版反作弊”略有偏差。根据微软最新的调查报告，Netfliter目的是帮助玩家隐藏真实IP地址，可以畅玩外服。额，这算是广告吗？

The actor’s activity is limited to the gaming sector, specifically in China, and does not appear to target enterprise environments. We are not attributing this to a nation-state actor at this time. The actor’s goal is to use the driver to spoof their geo-location to cheat the system and play from anywhere. The malware enables them to gain an advantage in games and possibly exploit other players by compromising their accounts through common tools like keyloggers.

我猜多半是哪家半吊子水平的游戏公司，拿rootkit做反盗版反作弊。以前也有过这样的事，最出名的是索尼。只是不知道为什么，这次居然能混过微软审查。

上面那个说微软偷数据，还传回美国的，你认真看报道了吗？数据传回到的IP地址属于Ningbo Zhuo Zhi Innovation Network Technology Co 公司地址在浙江大学国家大学科技园宁波分园。