• copygirl@lemmy.blahaj.zone
    link
    fedilink
    English
    arrow-up
    4
    ·
    13 days ago

    My uneducated guess is, some threats will burrow themselves in active memory but have no way of persisting beyond a reboot. Or perhaps it just shuts down background software you don’t need that could be vulnerable.

    • henfredemars@infosec.pub
      link
      fedilink
      English
      arrow-up
      1
      ·
      edit-2
      13 days ago

      This is also true because of fileless malware. Not all malware attempts to write to the disk because it leaves behind artifacts that could get captured or detected. Depending on what the attacker goals are, they may prefer to have the malware simply disappear if memory gets reset.

      Or like you wrote it is possible they just didn’t bother implementing a survival strategy because most people don’t reboot their phones very often.