They also encouraged organizations to review batch files in a text editor before executing them, and to deploy Sysmon and PowerShell logging on endpoints to improve detection of malicious activity ...