Hope is not a NOBUS strategy
https://cybersecpolitics.blogspot.com/2019/05/hope-is-not-nobus-strategy.html [cybersecpolitics.blogspot.com]
2019-05-16 00:38
So typically the first thing I do when I get a new implant to look at is see if the authors implemented public key encryption into it, or if they just have some sort of password authentication, and then maybe a symmetric algorithm for protecting their traffic. This was, for a while, a good way to track nation states because people who wanted their implants “easier” to deploy did not put public keys in them, whereas those of us who wanted a NOBUS backdoor generated a new public key per target (like this amazing one, Hydrogen, from 2004).