Researchers have spotted notable code overlap between Sunburst backdoor and a known Turla weapon. Security industry on the whole either ignores or is overwhelmed by. The detection model is going nowhere. Action-reaction is an axiom. The internet is a distributed network, and as such, so is all malware. A solution must then be based on a distributed solution. Any government type (centralized) solution is an absolute death blow to any distributed free communication system! In actuality, malevolent government has the most to gain from any obstruction to this form of free communication.
Source: https://threatpost.com/al-huger-malware-attribution-and-why-defense-so-hard-090712/76986/