We're at university together differin epiduo ISN collects data from POST requests, Grunzweig wrote. The stolen information is lifted from within IIS itself, which circumvents encryption, and then sent elsewhere. The malicious module can be configured to monitor information from specific URIs (uniform resource identifier), he wrote.