File Removal

Definition

The file removal technique deletes malicious artifacts or programs from a computer system.

How it works

Adversaries may place files or programs into a computer's file system to perform malicious actions. As part of the eviction process, these files and programs should be removed to prevent further compromise or reinfection. Examples of malicious types of files are malware which is directly harmful and content files with the intent to deceive users (e.g., phishing.) On Windows systems, antivirus (AV) software should be used to safely and permanently remove malicious files. AV software may first quarantine a suspected malicious file, which is the process of moving a file from its original location to a new location and makes changes so that it cannot be executed. Users can then verify that the file is not benign and then permanently delete it.

In robotics

The file removal technique is essential in preventing compromise of robotic systems. Malicious files, similar to malware in traditional computer systems, can be introduced into a robot's software environment, leading to unauthorized access, manipulation, or disruptions in its operations. Security measures may include the use of specialized security software or firmware designed for robotic systems. This software can perform tasks such as identifying, quarantining, and permanently removing malicious files, providing a layer of defense against cyber threats.

Considerations

-

Related ATTACK Techniques

References

Anti virus solution for ROS2

Robust and Energy Efficient Malware Detection for Robotic Cyber-Physical Systems