In the article it reads that the FBI had taken over the server which the PlugX malware connects to. They had the server issue the command to machines that respond to PlugX remote requests, to have PlugX delete its own registry keys and generated files, then create a temporary script to uninstall PlugX and clean remaining traces, and finally run that script which deletes itself at the end.
threaded - newest
How did the FBI have access to the computers to delete the malware in the first place?
.
In the article it reads that the FBI had taken over the server which the PlugX malware connects to. They had the server issue the command to machines that respond to PlugX remote requests, to have PlugX delete its own registry keys and generated files, then create a temporary script to uninstall PlugX and clean remaining traces, and finally run that script which deletes itself at the end.
So the fbi installed their own trojan on thousands of American computers, got it.
No send a signal to already infected devices with the control server of the bad actors them self.
The FBI sending signals to manipulate users sysyems, is technically hacking. White hat possibly, but still hacking.
It’s not hacking if they legally own plugx and the end users have given permission to plugx