So far nobody provided a good answer (if I missed it, I apologized, please do share) so I'm going to assume it's the typical "Nobody ever get fired for buying from IBM" mindset, namely rely on what is the most popular, confirm it works well while ignoring viable alternatives IMHO, e.g NitroKey.
Thanks, it's quite interesting but again IMHO it relies on bad practices. If you've been compromised and you "restore" (not in an sandboxed environment dedicated to study the threat) then you are asking for trouble. I'll read a bit more in depth but the timeline I see 1987, 1998, 2017 show me this is a very very niche strategy, to the point that it's basically irrelevant. Again it's good to know of it, conceptually, but in practice proper backups (namely of data) remains in my eyes the best way to mitigate most problems, attacks and just back luck (failing hardware, fire, etc) alike.
12 years ago I took "Malicious Software and its Underground Economy: Two Sides to Every Story" and it was quite interesting not so much for the technical aspect (which was still nice) but for the economical aspect that is often underappreciated. The core idea was that scammers or hackers might be doing it for fun, as you did, or learning, as I did... but the ones who keep on doing it sustainably make money out of it, consequently they are predictable. Namely they need repeatable methods that scale or that target a specific group. I really recommend taking a similar class but anyway, the big picture here is sure, maybe AV would miss such things and yet it wouldn't really matter because nearly nobody does that and/or it wouldn't propagate much.
That doesn't make much sense to me, one backup data, not executables or system. Even if they were to be saved in the backup then they wouldn't get executed back.
Anyway, that's still conceptually interesting but it's so very niche I'd be curious to hear where it's being used, any reference to read on where those exist in the wild?
Nothing needs an antivirus if you backup your data properly.
PS: I'm getting downvoted for this so I'll explain a bit more : if you backup properly, you can restore your data. Sure your system is fucked... but who cares? In fact if you care for your OS installation then right away it shows you are NOT in a reliable state. You install another OS and start from there. Maybe it's not even due to a virus, maybe your hardware burns in fire, same situation so IMHO a working backup (and by working I mean rolling, like TODAY it's done without your intervention) then you restore. Also please don't tell me about ransomware because even though it is a real threat, if you do your backups properly (as in not overwritting the old ones with the new ones) then you are still safe. It can be as basic as using rdiff-backup. It's fundamental to understand the difference between what's digital and what is not digital.
Still watching it but this shouldn't be surprising.
The whole point of US politics was to isolate China out of the "AI revolution" by depriving it to top of the line chip.
Meanwhile China has been building the entire World electronic ecosystem bar few very specific high end components, leaving these to TSMC, ASML, etc or design mostly to the US.
Even before tariffs and sale bans (due to dual use concerns) China already had a chip independence plan dating back from at least 2000. Since then close to the entire World move production there, at least assembly, and most deals to do so included, or tried to, include IP transfer and at the very least learning with the partner, if not more but that'd be just speculation, to add industrial espionage on top (even though plenty of news on the topic).
So... sure, it's happening. Now the question though I asked on such thread countless time is basically : what's the yield?
Because producing 1 board to send to a tester is already an incredible feat but that doesn't mean thousands or even millions can be produced. If they can, that also doesn't mean they can be produced economically efficiently, regardless of subsidies.
It's fundamental because instead of saying "It doesn't work!" and get no useful help, people must think of it as an investigation (or whatever get them going) looking for clues. Until you get the right message and can provide the right context (e.g. what computer are you using, what OS version, etc) then you get generic help which is like looking for a needle in a haystack. Sure it's not entirely impossible if you are both lucky and patient but you are doing yourself and others a huge disservice.
Before Linux maybe they were used to black boxes but here, nobody is intentionally trying to hide away anything from you!
PS: bonus, notes are basically free. Jolt down notes about anything and everything you are learning. Don't just "use" a computer, LEARN how to use a computer.
I mean not even... sure it can surprise you on some stuff you know little, sure it can regurgitate random parts from an encyclopedia and might even not be wrong about it... but it can easily be "outsmarted" by a 5yo on some of the most basic and random questions, it only has to be outside if its dataset. That's not intelligence.
So far nobody provided a good answer (if I missed it, I apologized, please do share) so I'm going to assume it's the typical "Nobody ever get fired for buying from IBM" mindset, namely rely on what is the most popular, confirm it works well while ignoring viable alternatives IMHO, e.g NitroKey.