antivirus programs Archives

Tech Optimizer

May 31, 2025

Devious new ClickFix malware variant targets macOS, Android, and iOS using browser-based redirections

ClickFix attacks have evolved from targeting Windows systems to also affecting macOS, iOS, and Android devices. The new version starts with a compromised website where cybercriminals inject JavaScript code that redirects users to a fake URL shortener. This action leads to a download page serving malware. On macOS, the attack executes a malicious shell script via a terminal command, while on Android and iOS, it can occur without user interaction, allowing malware to be downloaded simply by visiting the compromised site. The malware is packaged in a .TAR archive and has been flagged by multiple antivirus programs.

Tech Optimizer

May 31, 2025

Authorities Dismantled AVCheck, a Tool For Testing Malware Against Antivirus Detection

Law enforcement agencies from multiple nations dismantled a cybercriminal operation that provided malware testing services to evade antivirus detection. This effort led to the seizure of four domains and their servers, disrupting infrastructure that facilitated ransomware attacks globally. U.S. Attorney Nicholas J. Ganjei announced the disruption of an online software crypting syndicate that helped cybercriminals keep their malware undetected. The seized domains offered counter-antivirus tools and crypting services, allowing criminals to obfuscate malware and gain unauthorized access to systems. Investigators conducted undercover purchases and analyzed services, revealing connections to ransomware groups targeting victims in the U.S. and internationally. The operation, part of Operation Endgame, involved collaboration among the U.S., Netherlands, France, Germany, Denmark, Ukraine, and Portugal, with the FBI Houston Field Office leading the U.S. investigation. The seizures occurred on May 27.

Tech Optimizer

May 30, 2025

Dutch police takes Counter Antivirus service AVCheck offline

The Dutch Team High Tech Crime, in collaboration with international partners, has dismantled the counter-antivirus service AVCheck, which was used by cybercriminals to make malware undetectable. AVCheck was one of the largest services of its kind, allowing malware developers to test their software against antivirus programs. The operation involved cooperation from the Netherlands, the United States, and Finland, and was executed by the High Tech Crime Team under the National Public Prosecutor’s Office. The investigation not only shut down AVCheck but also gathered evidence against its administrators and users, including those of related services like Cryptor.biz and Crypt.guru. Additionally, a fake login page was launched to deter AVCheck users, and collaborations with antivirus organizations were established as part of Project Melissa. This action is connected to Operation Endgame, which previously targeted other malware services.

Tech Optimizer

May 29, 2025

Windows PCs at risk as new tool disarms built-in security

All modern Windows PCs come with Microsoft Defender, a built-in antivirus solution. A tool called Defendnot can disable Microsoft Defender by tricking Windows into believing another antivirus is active. It uses an undocumented API to register a counterfeit antivirus, which leads to Microsoft Defender being automatically disabled without user notification. Defendnot creates a scheduled task for persistence and allows customization of the antivirus name. It is a successor to a previous project, No-Defender, which was removed due to copyright issues. Currently, Microsoft Defender flags Defendnot as a threat.

Tech Optimizer

May 29, 2025

Xanthorox, the AI that promotes itself as an easy resource for committing cybercrimes

Xanthorox is an AI developed in 2023 by an anonymous creator, claiming to surpass WormGPT and EvilGPT. It promotes itself as a tool for illicit online activities, offering features like ransomware creation, deepfake generation, phishing email production, and malware development. The AI operates on open-source models without typical security measures, allowing for unregulated content generation. Its pricing includes a free tier for limited features and negotiable rates for full access. Security experts note that while Xanthorox is effective, its actual impact on large-scale cybercrime is uncertain. The legality of Xanthorox stems from its open-source nature, which allows for its use as long as it does not violate laws, although using it for illegal activities remains unlawful.

Tech Optimizer

May 29, 2025

How to turn off antivirus

Antivirus software is crucial for digital security, providing protection against malware threats. Users may need to disable antivirus temporarily for reasons such as system resource consumption, particularly during resource-intensive tasks like gaming, or to bypass false positives when installing applications. Disabling antivirus software poses risks, especially when browsing the internet, as even legitimate sites can be compromised. Precautions to take when disabling antivirus include disconnecting from the internet, avoiding USB drives, using trusted networks, closing non-essential applications, verifying the legitimacy of downloaded files, and limiting browsing to secure websites. Users should promptly re-enable their antivirus after completing necessary tasks.

Tech Optimizer

May 29, 2025

How to run an antivirus scan on your computer

When selecting antivirus software, understanding its functionality is crucial to ensure adequate protection. Running a virus scan involves opening the antivirus program, clicking the ‘Scan’ button, and allowing the software to operate. Automated scan schedules are important for consistent protection, especially during system startup to catch hidden malware. Key points for executing scans include avoiding heavy applications during the scan, utilizing the ability to pause scans, and ensuring laptops are charged and plugged in. During scans, the antivirus may identify potentially unwanted programs (PUPs), which should not be dismissed. After a scan, reviewing the results is essential, including threat names, severity ratings, affected files, and recommended actions. If threats are detected, correlating them with known vulnerabilities is advisable. Some malware may require a device restart or boot-time scanning for removal. Maintaining exportable logs can be beneficial for future reference. Post-scan, it is important to patch operating systems, change passwords if necessary, perform system backups, and establish a regular backup plan. Most antivirus programs offer features for automated scans and real-time protection, which should be utilized. Regular checks of reports are necessary to stay informed about device security. To maintain virus-free devices, users should avoid unknown links or email attachments, download software from legitimate sources, use strong passwords, back up important files, keep browsers updated, and enable multi-factor authentication. Regular virus scans are vital for safeguarding online presence and preventing performance issues.

Tech Optimizer

May 29, 2025

Antivirus alone won’t protect you: The real danger is social engineering

Social engineering is a manipulation tactic that exploits human trust to obtain sensitive information or access, posing a significant cybersecurity threat. Unlike traditional cyber threats that rely on malware, social engineering targets individuals through deception, often invoking emotions like fear or urgency. Common examples include fraudulent phone calls, phishing emails, and deceptive text messages. Antivirus software primarily protects against malware but is ineffective against social engineering attacks, which do not involve malicious code. The consequences of falling victim to such attacks can include financial losses, identity theft, and compromised networks. Effective defenses against social engineering include skepticism towards unsolicited contact, verifying requests independently, never disclosing sensitive information, using strong passwords, and enabling two-factor authentication. Awareness and education are crucial in combating these threats.

Tech Optimizer

May 27, 2025

Microsoft oversells Windows 11’s Smart App Control as a “top antivirus solution”

Microsoft's Smart App Control (SAC) is integrated into Windows 11 and requires a clean installation to function optimally. It is designed to enhance security by using artificial intelligence to proactively shield users from threats, working alongside existing antivirus software rather than replacing it. SAC aims to anticipate and block suspicious applications before they can cause harm, minimizing system performance impact by avoiding constant file scanning. However, the effectiveness of SAC and its claims of being a groundbreaking innovation have been questioned, as proactive security measures have existed for years, and modern antivirus solutions offer advanced features beyond basic scanning. Users are advised to consider independent testing platforms for reliable antimalware options.

Tech Optimizer

May 26, 2025

This Stealthy Malware Takes Control of Your Computer to Steal Your Data

Skitnet is a new malware that targets personal data by stealthily infiltrating computer systems. It is used by hackers to steal sensitive information through advanced methods, including the insertion of invisible malicious code in emails and the creation of fraudulent websites. Cybersecurity experts from PRODAFT have revealed that Skitnet is often employed by ransomware groups and can remotely control infected computers using services like AnyDesk. The malware operates discreetly, monitoring user actions without detection for extended periods, making it difficult for victims to realize they are infected until after data theft occurs. To protect against such threats, security specialists recommend identifying suspicious emails, using reliable antivirus software, and enhancing account security with two-step verification and strong passwords.