antivirus products Archives

Winsage

January 12, 2026

EDRStartupHinder Disables Antivirus and EDR Protections During Windows 11 25H2 Startup

A new tool named EDRStartupHinder was unveiled on January 11, 2026, which allows attackers to inhibit the launch of antivirus and endpoint detection and response (EDR) solutions during the Windows startup process. Developed by security researcher Two Seven One Three, it targets Windows Defender and various commercial security products on Windows 11 25H2 systems by redirecting essential system DLLs during boot using the Windows Bindlink API and Protected Process Light (PPL) security mechanisms. The tool employs a four-step attack chain that includes creating a malicious service with higher priority than the targeted security services, redirecting critical DLLs to attacker-controlled locations, and modifying a byte in the PE header of the DLLs to cause PPL-protected processes to refuse loading them. This results in the termination of the security software. EDRStartupHinder has been tested successfully against Windows Defender and other unnamed antivirus products, demonstrating its effectiveness in preventing these security solutions from launching. The source code for EDRStartupHinder is publicly available on GitHub, raising concerns about its potential misuse. Security teams are advised to monitor for Bindlink activity, unauthorized service creation, and registry modifications related to service groups and startup configurations to detect this attack vector. Microsoft has not yet issued any statements regarding patches or mitigations for this technique.

Tech Optimizer

January 9, 2026

MacPaw Moonlock

Moonlock is a new antivirus solution for Mac developed by MacPaw, utilizing technology from CleanMyMac. It features a basic VPN, security configuration scan, and an elegant user interface, but some functionalities may not perform as expected. The annual subscription for a single Mac is priced higher than competitors like CleanMyMac and G Data Antivirus. Moonlock requires macOS 13 (Ventura) or later for compatibility. Setting up the app involves creating an account and granting permissions, with a full scan recommended post-installation. In independent lab tests, Moonlock scored 5.5 out of 6 in protection and 6 in usability, but its performance rating was 4.5 points, lower than competitors. The Security Advisor feature provides advice on enhancing security, while the System Protection feature identifies areas for improvement. Moonlock includes a basic VPN with 61 server cities in 50 countries. Its Network Inspector focuses on blocking traffic from specified countries, but its effectiveness is questionable. Flexible scan scheduling is available, but it does not guarantee the removal of Windows malware. The app includes informational panels and animated videos, but it currently lacks effective phishing protection, failing to block known fraudulent websites.

Tech Optimizer

December 30, 2025

NordVPN’s Threat Protection Pro™ ranks third in an independent anti-phishing test

AV-Comparatives conducted the 2025 Anti-Phishing Comparative Test, evaluating the phishing detection capabilities of various antivirus products, browsers, and VPNs using 1,000 phishing URLs. NordVPN's Threat Protection Pro™ achieved a 90% detection rate of phishing websites, ranking third in the evaluation. To qualify for AV-Comparatives’ Anti-Phishing Protection approval, products must detect and block at least 85% of phishing URLs without generating false positives. NordVPN is the only VPN provider to receive this recognition.

Tech Optimizer

December 24, 2025

NordVPN’s Threat Protection Pro™ ranks third in an independent anti-phishing test

AV-Comparatives has released its 2025 Anti-Phishing Comparative Test results, evaluating the phishing detection capabilities of various antivirus products, browsers, and VPNs using 1,000 phishing URLs. NordVPN's Threat Protection Pro™ achieved a 90% average detection rate for phishing websites, securing third place in the test. NordVPN was the first VPN service to receive AV-Comparatives' approval for anti-phishing protection and has maintained this certification, being the only VPN provider with such recognition. To gain AV-Comparatives' approval, a product must detect and block at least 85% of tested phishing URLs without false alarms on legitimate sites.

Tech Optimizer

December 12, 2025

The digital impersonators: How cybercriminals hijack your brand to launch malvertising attacks

Brand trust is highly valued by consumers, leading cybercriminals to exploit it through malvertising, which embeds malicious code in legitimate ads. Malvertising can redirect users to phishing sites or download malware. Cybercriminals create fake ads that mimic trusted brands, targeting high-traffic moments and using real-time bidding to distribute these ads on reputable sites. The process involves setting up fake accounts, creating convincing ads, purchasing ad space, and delivering malware through exploit kits. The consequences include identity theft and financial loss for consumers, and reputational damage for brands. To protect against these threats, organizations should implement regular software updates, continuous employee training, protective tools, and consider partnering with managed service providers for enhanced security measures.

Tech Optimizer

December 9, 2025

Warning! Engineered Linux Malware Can Bypass Next-Gen Anti-Virus Solutions – Open Source For You

The author created a custom reverse TCP payload using Python, packaged it into an .elf executable, and tested its stealthiness against antivirus software. The payload included functionalities such as webcam snapshots, keylogging, screen capture, and file transfers. Established tools for obfuscation often triggered antivirus alerts, prompting the author to develop a custom solution to avoid signature-based detection, maintain behavioral control, and gain insights into detection engines. The payload was designed to connect back to the attacker's machine and execute commands, while the listener processed incoming data. After compiling the binary, it was submitted to VirusTotal, where only four out of 64 antivirus engines flagged it, indicating that custom code can bypass many next-gen antivirus products.

Tech Optimizer

December 2, 2025

The Cyber Monday 2025 Cybersecurity, IT, VPN, & Antivirus Deals

As Black Friday 2025 approaches, various early deals are available across multiple sectors. Password Manager Deals: - Passwork: 50% discount on all plans. - LastPass: - 50% off Premium & Families - 10% off Teams - 20% off Business - 30% off Business Max Plans - Dashlane: 60% discount on all personal plans. VPN Deals: - NordVPN: Up to 77% off a 2-year subscription; basic plan at .99/month (74% discount). - SurfShark: Up to 88% off with three free months on a 2-year subscription. - ProtonVPN: Up to 70% off, depending on subscription length. Antivirus Software Deals: - Malwarebytes: 50% off 1-year or 2-year subscriptions to Standard, Plus, and Ultimate plans. - Avast: Up to 70% off antivirus software. - ESET: 50% off ESET Home antivirus software. - Bitdefender: 30% off subscriptions for GravityZone products. Personal Information Privacy Deals: - Incogni: 55% off personal information removal plans with coupon code BFDEAL25. - DeleteMe: 30% off privacy protection plans with coupon code BFCM30OFF25. IT and Security Courses Deals: - PuralSight: 60% off individual plans with coupon code BLACKFRIDAY60. - Udemy: Cyber Week sale with courses available for .99. - ISC2: 10% off cybersecurity training and courses from November 28 to December 5. Security & IT Black Friday Deals: - Firewalla: Sitewide discounts and additional savings on devices. - Hak5: Hacked November Sale with significant discounts. - Yubico: 30% off YubiKey 5 NFC and 5C NFC security keys.

Tech Optimizer

November 26, 2025

Norton has cut antivirus prices this Black Friday by up to 80% – Great discounts for mobile, family, and small business protection available now

Norton is a leading provider of antivirus software, currently offering limited-time Black Friday discounts on its solutions. In the US, it provides options for individual devices and family plans, including mobile-friendly solutions. Small and medium-sized businesses can access specialized antivirus solutions tailored to their needs. In the UK, competitive pricing is available for individual and family packages, while Australian consumers can find attractive deals for personal and family use, as well as tailored solutions for businesses.

Tech Optimizer

November 25, 2025

The Black Friday 2025 Cybersecurity, IT, VPN, & Antivirus Deals

As Black Friday 2025 approaches, various promotions in digital security and online education are being offered. Password Manager Deals: - Passwork: 50% discount on all plans. - LastPass: 50% off Premium & Families plans, 10% off Teams, 20% off Business, and 30% off Business Max Plans. - Dashlane: 60% discount on all personal plans. VPN Deals: - NordVPN: Up to 77% off a 2-year subscription, basic plan at .99/month (74% discount). - SurfShark: Up to 88% off with three free months for a 2-year subscription. - ProtonVPN: Up to 70% off, depending on subscription length. Antivirus Software Deals: - Malwarebytes: 50% off 1-year or 2-year subscriptions. - Avast: Up to 70% off various antivirus software options. - ESET: 50% off ESET Home antivirus software. - Bitdefender: 30% off subscriptions to GravityZone products. Personal Information Privacy Deals: - Incogni: 55% off personal information removal plans with coupon code BFDEAL25. - DeleteMe: 30% off privacy protection plans with coupon code BFCM30OFF25. IT and Security Courses Deals: - PuralSight: 60% off individual plans with coupon code BLACKFRIDAY60. - Udemy: Courses discounted to .99 during Cyber Week. - ISC2: 10% off cybersecurity training and certificates from November 28 to December 5. Security & IT Black Friday Deals: - Firewalla: Sitewide discounts and additional discounts on devices. - Hak5: Deep discounts during Hacked November Sale. - Yubico: 30% off YubiKey 5 NFC and 5C NFC security keys.

Tech Optimizer

November 7, 2025

Malwarebytes scores 100% in AV Comparatives Stalkerware Test 2025

The AV-Comparatives Stalkerware Test 2025 evaluated 13 Android security solutions against 17 stalkerware-type applications. The test revealed that stalkerware remains a significant threat, often installed covertly and designed to evade detection. Malwarebytes achieved a perfect 100% detection rate, while Bitdefender, ESET, Kaspersky, and McAfee each detected 94%. Avast, Avira, and F-Secure identified 88%, Norton and Sophos around 82%, and G Data (65%), Google (53%), and Trend Micro (59%) had lower detection rates. The evaluation emphasized the importance of clear communication of threats to potential victims. Malwarebytes' involvement in the Coalition Against Stalkerware highlights its commitment to user safety and effective detection of stalkerware.