this post was submitted on 24 Oct 2024
38 points (93.2% liked)
Infosec News
244 readers
55 users here now
A community posting Cybersecurity related articles.
founded 1 month ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
My uneducated guess is, some threats will burrow themselves in active memory but have no way of persisting beyond a reboot. Or perhaps it just shuts down background software you don't need that could be vulnerable.
This is also true because of fileless malware. Not all malware attempts to write to the disk because it leaves behind artifacts that could get captured or detected. Depending on what the attacker goals are, they may prefer to have the malware simply disappear if memory gets reset.
Or like you wrote it is possible they just didn’t bother implementing a survival strategy because most people don’t reboot their phones very often.
Makes sense and gives a compelling reason for regular reboots.