On Mon, 2022-08-22 at 06:15 -0700, 'Gopher-Insane' via golang-nuts wrote: > Hi > > So our security team has raised a concern with Go and malware. The > link that was sent to me > was https://securityboulevard.com/2021/09/behavior-based-detection-ca > n-stop-exotic-malware/. > I reached out to Bill Kennedy on Twitter who disagreed that Go was a > problem. Said it was worth posting here to hear people's thoughts. > > Thanks!
That's a particularly weird take that they have. Apart from the apparent suggestion that somehow because Go is used in writing some malware that Go should not be used, it leaves no actual action to be taken unless your company is the origin of the malware that is targetting it, in which case there are other issues. The point of the article is not that novel compilation patterns are dangerous, but rather that using compilation patterns for detection is not a generally safe strategy for preventing malware. This is the point that they seem to have missed. -- You received this message because you are subscribed to the Google Groups "golang-nuts" group. To unsubscribe from this group and stop receiving emails from it, send an email to golang-nuts+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/golang-nuts/a2d107fb0167c79988578bdee70af895b75e11f2.camel%40kortschak.io.
