PowerShell Security Threats Greater Than Ever, Researchers Warn

Microsoft's Windows PowerShell configuration management framework continues to be abused by cyber attackers, according to researchers at Symantec, who have seen a surge in associated threats. From a report on ComputerWeekly: More than 95% of PowerShell scripts analysed by Symantec researchers have been found to be malicious, with 111 threat families using PowerShell. Malicious PowerShell scripts are on the rise, as attackers are using the framework's flexibility to download their payloads, traverse through a compromised network and carry out reconnaissance, according to Candid Wueest, threat researcher at Symantec.

Don't hate on Microsoft

[gavron]

Powershell is no different than any other Microsoft product. Security is not a consideration. Consumer lock-in and revenue is.

This is no more "news" than "MPAA goes after another movie critic who shared a screener" or "IRAN says it hates the US in a new message."

Nothing to see here. Microsoft has never claimed to, never tried to, and has never made any software product that is resistant to hacks.

E