Tag Archive for: PCs

Windows PCs are now being hit by dangerous malware — here’s the steps you need to take to stay safe

/in


It’s been a while since we heard about malware hiding in PyPI packages, but researchers have now reported finding almost a dozen lurking on the open source Python Package Index (PyPI) repository.

Cybersecurity researchers from Fortinet’s FortiGuard Labs found nine packages delivering the WhiteSnake Stealer. The packages are called nigpal, figflix, telerer, seGMM, fbdebug, sGMM, myGens, NewGends, and TestLibs111. WhiteSnake is a Windows infostealer, capable of working around antivirus programs, and communicates with the C2 server via the Tor protocol, the researchers explained.

Source…

This is why we update… Data-thief malware exploits unpatched Windows PCs • The Register

/in


Criminals are exploiting a Windows Defender SmartScreen bypass vulnerability to infect PCs with Phemedrone Stealer, a malware strain that scans machines for sensitive information – passwords, cookies, authentication tokens, you name it – to grab and leak.

The malware abuses CVE-2023-36025, which Microsoft patched in November. Specifically, the flaw allows Phemedrone and other malicious software to sidestep protections in Windows that are supposed to help users avoid running hostile code. When Redmond issued a fix, it warned the bug had already been found by miscreants and exploited in the wild. 

Shortly after Microsoft plugged the hole, the patch was reverse-engineered to produce a proof-of-concept exploit. Now that everyone knows how to attack systems using this vulnerability, update your Windows machines to close off this avenue if you haven’t already.

In research published today, Trend Micro researchers Peter Girnus, Aliakbar Zahravi, and Simon Zuckerbraun detail the Phemedrone info-stealer, including how it works, how it uses CVE-2023-36025 to infect a PC, and how to detect its presence on a network.

We’re told the malware targets a ton of browsers and applications on victims’ PCs, lifting sensitive info from files of interest and sending the data to fraudsters to exploit. These targets include Chromium-based browsers as well as LastPass, KeePass, NordPass, Google Authenticator, Duo Mobile, and Microsoft Authenticator. Phemedrone looks for things like passwords, cookies, and autofill information to exfiltrate; once this data is in the hands of the malware’s operators, it can be used to log into the victims’ online accounts and cause all sorts of damage and strife.

The code also steals files and other user data from several cryptocurrency wallets and messaging apps including Discord and Telegram, and login details for the Steam gaming platform.

In addition it gathers up a bunch of telemetry, including hardware specs, geolocation data, and operating system information, and takes screenshots, sending all of this off to the attackers via Telegram or to a remote command-and-control server.

Miscreants infect victims’ machines with Phemedrone by tricking marks…

Source…

Best antivirus software for Windows PCs 2023: Reviews and best picks

/in


Antivirus software is a necessary tool in today’s online world. Attacks are only becoming more sophisticated, especially with the continued rise of AI. Even the most tech-savvy and cautious among us can drop their guard at wrong time or get tricked into exposing themselves to a malware, spyware, or ransomware vulnerability. Antivirus protection is an essential backup against such threats. 

We’re not suggesting that PC security software is fool-proof, but it does a great job of protecting your computer against harmful malware and ransomware. Most systems come with security software baked into the OS, but this is often the bare minimum you need. Choosing to purchase more robust antivirus software will provide you with features such as an advanced firewall, sandbox environments for suspicious programs, and multi-device protection, among other things.

How do you choose a good antivirus? We’ve tested a multitude of offerings, including all the big names, so you don’t have to! When testing antivirus software, we look for products that strike a balance between excellent protection, a worthwhile selection of features, and minimal performance impact on your PC. For more information, you can read about how we test antivirus software below our picks. 

Updated 12/21/23: Just in time for the new year, we’ve got three new reviews. Even after our completely fresh looks at Norton 360 Deluxe and AVG Internet Security, they’ve kept their spots among our top picks. We also examined McAfee+ Ultimate, and while it packs in an intense number of features, its lack of polish sadly holds it back.

Best antivirus of 2023 reviewed and ranked

Norton 360 Deluxe – Best antivirus for PC overall

Norton 360 Deluxe - Best antivirus for PC overall

Pros

  • Strong antivirus protection
  • Wide protection against major online threats
  • Simple, straightforward features

Cons

  • Performance impact on some PCs

Source…

Avira Antivirus Is Causing Windows PCs To Run So Hard They Freeze Up, Fix Available

/in


One of the telltale signs that your PC has become ill with a virus is an unexpected slowdown in performance. Various forms of malware can sometimes feast on your system’s resources, whether it’s a hidden cryptocurrency miner, keylogger, or something else. Ironically, a recent update to Avira’s antivirus software is having the same effect on system PCs, with users reporting system freezes in Windows.

The issue came to light this week in a post on Reddit. A user who goes by “kiiniiwiinii” reported that their PC had suddenly begun freezing up, which prompted them to start disabling background apps one by one, until only Avira remained running.

“Two other people I know had the same issue (both have Avira). Fixed it by going into safe startup and uninstalling Aviera. This along with the game booster (that we didn’t enable) causing lag (took forever to figure out the cause) and the horrible support, I will be cancelling my subscription and keeping Avira uninstalled,” the user wrote.

Several others chimed in to the Reddit thread and said they too were experiencing the same performance hiccup. One user said they noticed the apparent glitch was causing Avira to utilize 100% of their processor and memory resources. Others reported seeing the same issue on dozens of client PCs. So, what gives?

Avira’s parent company, Gen Digital, confirmed the issue in a statement to Heise.de. According to Gen Digital, a bug in Avira’s firewall was causing the issue “under a certain condition.” The company also said that the issue has been resolved via a new software update.


“We are aware that a recent update from Avira has caused problems for some Windows 10 and Windows 11 users. These were automatically resolved by an update released on Monday, December 11th [at] 11:30 a.m. (CET). In the unlikely event that the update has not reached all computers, users can contact the Avira support team who will be happy to help them,” Gen Digital said.

Interestingly, Gen Digital also said that if the update does not arrive for some reason,…

Source…