Security News > 2021 > April > The FBI Is Now Securing Networks Without Their Owners’ Permission
One of the characteristics of the campaign, in the later days when the Chinese probably realized that the vulnerabilities would soon be fixed, was to install a web shell in compromised networks that would give them subsequent remote access.
Even if the vulnerabilities were patched, the shell would remain until the network operators removed it.
Now, months later, many of those shells are still in place.
They're being used by criminal hackers as well.
On Tuesday, the FBI announced that it successfully received a court order to remove "Hundreds" of these web shells from networks in the US. This is nothing short of extraordinary, and I can think of no real-world parallel.
Then if the FBI got a court order to fix all the locks to remove the master passkey capability.