Antivirus Archives

Tech Optimizer

August 9, 2025

No firewalls or antivirus software—this new quantum technology using magnets promises to protect your information at the subatomic level

A team from Kyoto University has developed a light source that emits single photons, enhanced in brightness by a small magnetic field, which can be used for secure quantum communications. This technology relies on the principles of quantum mechanics, making it difficult for eavesdroppers to replicate or measure the quantum states without detection. The researchers used a one-atom-thick semiconductor sheet, WSe₂, creating traps for excitons that emit photons when relaxed. Current limitations include the need for cryogenic temperatures for operation, but advancements in materials may allow for room-temperature single-photon emission. The technology has potential applications in secure communications for sensitive transactions and could evolve into compact modules for practical use. Recent studies have demonstrated successful quantum key distribution (QKD) using true single-photon sources, indicating progress in integrating quantum technology into real-world networking.

Tech Optimizer

August 8, 2025

Cyberattackers Leverage Trusted Drivers to Disable Antivirus Software and Bypass Security Protocols

A cyberattack on a Brazilian enterprise involved the use of legitimate, digitally signed drivers to disable antivirus solutions and deploy MedusaLocker ransomware. The attackers executed a Bring Your Own Vulnerable Driver (BYOVD) attack by exploiting the ThrottleStop.sys driver, which has a critical vulnerability (CVE-2025-7771) allowing unauthorized memory access. They compromised an SMTP server using valid RDP credentials, extracted user credentials with Mimikatz, and moved laterally across the network. The attackers uploaded and executed an AV killer program and a renamed version of the driver, terminating antivirus processes to facilitate ransomware deployment. The malware targeted major antivirus vendors and employed kernel-level commands to eliminate security processes. Recommendations for defense include multi-factor authentication, hardening RDP access, and implementing layered security measures.

Tech Optimizer

August 8, 2025

Understanding polymorphic malware: A comprehensive guide

Polymorphic malware is a type of malicious software that can change its code structure while maintaining its core functionality, making it difficult for traditional signature-based antivirus solutions to detect. It uses a mutation engine to create new variants by altering its code through techniques like code obfuscation, encryption, and junk code insertion. There are several categories of polymorphic malware, including polymorphic viruses, trojans, rootkits, and ransomware, each with unique characteristics. Detection of polymorphic malware is challenging due to its ability to evade conventional methods, prompting the use of behavioral analysis and machine learning for identification. To protect against such threats, a multi-layered security approach is recommended, including regular software updates, network segmentation, and employee training. Real-world examples like the Storm Worm and Conficker worm illustrate the significant impact of polymorphic malware, which has caused substantial financial losses. As cybersecurity measures advance, polymorphic malware continues to evolve, incorporating artificial intelligence and machine learning, leading to new challenges for security professionals. Cloud-based security solutions are emerging as effective tools to combat these threats.

Winsage

August 8, 2025

Ask Engadget: What are my options when Windows 10 support ends on October 14?

Microsoft will officially end support for Windows 10 on October 14, 2025. Users can continue to operate their Windows 10 PCs after this date, but they will not receive customer support, security updates, or upgrades, making the system vulnerable. Upgrading to Windows 11 is the best option for most users, provided their hardware meets the minimum requirements. Users can check compatibility with Microsoft's PC Health Check app. If a PC cannot support Windows 11, users may consider buying a new PC, with prices typically ranging from 0 to ,200. Alternatively, users can continue using Windows 10, which poses significant security risks without updates. Another option is to pay for the Windows 10 Extended Security Update (ESU) for an additional year of support until October 13, 2026, available for a fee or Microsoft reward points.

TrendTechie

August 8, 2025

Троян Efimer крадет криптовалюту через торренты и сайты на WordPress

A new Trojan named Efimer has been identified, which can alter cryptocurrency wallet addresses in the clipboard, redirecting funds to cybercriminals. Efimer spreads primarily through compromised WordPress sites and phishing emails. Once installed, it can disable Windows Defender, install a Tor client, and capture seed phrases and wallet addresses. It targets Windows users globally, particularly those in Brazil, Russia, India, Spain, Germany, and Italy. The Trojan primarily targets wallets holding Bitcoin, Ethereum, Monero, Tron, and Solana, but may expand to other cryptocurrencies. To protect against Efimer, users are advised to use reliable security solutions, create strong passwords, enable two-factor authentication, avoid downloading files from unverified sources, and not store seed phrases in plain text.

AppWizard

August 8, 2025

Scammers targeting kids and teens Minecraft gamers, security expert warns

Cybersecurity experts have raised concerns about potential threats targeting young players in Minecraft, particularly within its modding community. Mods can enhance gameplay but may also serve as vehicles for malware deployment. The Java Edition of Minecraft, which allows downloads from third-party websites, poses a higher risk compared to the Bedrock Edition, which features a built-in marketplace with safety reviews. Scammers can use mods to install malware that operates like a Trojan horse, potentially leading to the theft of sensitive information, including financial details. Although children may not have sensitive data, they often use shared devices, making cybersecurity education important. Experts recommend parental guidance, antivirus protection, and open discussions about internet safety. Microsoft has emphasized its commitment to player safety, implementing features such as abuse reporting, parental controls, and proactive moderation to create a safer gaming environment.

Winsage

August 8, 2025

Hackers can bypass Microsoft Defender to install ransomware on PCs

A significant vulnerability in Microsoft Defender has been identified, allowing hackers to bypass the software and deploy Akira ransomware. This vulnerability exploits the legitimate driver rwdrv.sys, associated with the Intel CPU tuning tool ThrottleStop, granting cybercriminals kernel-level access to a target PC. Once access is obtained, hackers can introduce the driver hlpdrv.sys to manipulate the Windows Registry, disabling Microsoft Defender's protective measures. GuidePoint Security has noted that this method has been increasingly used in Akira ransomware attacks since July of this year. Users are advised to use reputable antivirus software and keep it updated to protect against such threats.

BetaBeacon

August 7, 2025

ACMarket App Free Download for Android

AC Market is a platform where Android users can get paid apps and moded games for free without the need to root their phone. The app has a user-friendly interface, fast download speed, daily updates, and a built-in app manager. It offers safe and scanned content, does not require sign up or login, and provides access to a variety of mod games and apps.

Tech Optimizer

August 7, 2025

Hackers are abusing this Intel tool to disable Windows 11’s built-in antivirus — don’t fall for this

The Akira ransomware has been using a legitimate Intel CPU tuning driver to disable Microsoft Defender, allowing hackers to gain kernel-level access to systems. This method, known as BYOVD (Bring Your Own Vulnerable Driver), involves exploiting signed drivers with known vulnerabilities for privilege escalation. Researchers found that the execution of the driver modifies Microsoft Defender's DisableAntiSpyware settings in the Windows Registry using regedit.exe. Guidepoint Security has responded by providing a YARA rule and indicators of compromise to help organizations defend against these attacks, emphasizing the need for vigilance and caution when downloading software.

Tech Optimizer

August 7, 2025

The best VPNs with antivirus of 2025: Expert tested and reviewed

A virtual private network (VPN) combined with antivirus software provides enhanced security for online and offline activities by creating encrypted tunnels that protect privacy and mask online behavior. In the UK, users increasingly adopt VPNs to bypass strict age verification checks. Key benefits of using a VPN include IP address disguise, data encryption, and access to geo-restricted content. The best VPN with antivirus currently recommended is the Surfshark One security suite, which offers a robust VPN experience and effective antivirus capabilities. Other notable VPNs with antivirus features include NordVPN, Private Internet Access (PIA), and CyberGhost, each with unique strengths and pricing structures. Surfshark allows unlimited device connections, offers a seven-day free trial, and has a 30-day money-back guarantee. It features IP masking, automated antivirus protection, and a user-friendly app. NordVPN is known for high-speed performance and robust antimalware features, allowing up to 10 simultaneous connections. PIA offers customizable settings and unlimited connections, while CyberGhost is optimized for streaming and allows connections on up to seven devices. Each service has specific pricing, trial periods, and user ratings across various platforms.