Browser Security Archives

Winsage

September 8, 2025

MostereRAT Targets Windows Users With Stealth Tactics

A recent investigation by cybersecurity experts revealed a sophisticated phishing campaign utilizing a new strain of malware called MostereRAT, which targets Microsoft Windows systems. This Remote Access Trojan (RAT) allows attackers extensive control over compromised devices and employs advanced evasion techniques, including being crafted in the Easy Programming Language (EPL). MostereRAT can disable security tools, obstruct antivirus traffic, and establish secure communications with its command-and-control server through mutual TLS (mTLS). The attack begins with phishing emails aimed at Japanese users, leading to the download of a Word document that contains a concealed archive. This prompts the user to execute an embedded executable, activating the malware, which installs itself in the system directory and creates services with SYSTEM-level privileges. It also displays a deceptive message in Simplified Chinese to further spread the malware. MostereRAT can disable Windows Update, terminate antivirus processes, and impersonate the TrustedInstaller account to escalate privileges. Its functionalities include keylogging, system information collection, downloading and executing payloads, creating hidden administrator accounts, and running remote access tools like AnyDesk and TightVNC. Some components of MostereRAT's infrastructure were previously linked to a banking trojan reported in 2020.

Winsage

September 5, 2025

Mozilla Extends Firefox ESR 115 Support for Windows 7 Until March 2026

Mozilla has extended support for Firefox ESR 115 for users on aging operating systems until March 2026, specifically for Windows 7, Windows 8, Windows 8.1, and macOS versions 10.12 through 10.14. This extension allows these users to continue receiving essential security patches for an additional six months. Firefox ESR 115, released in July 2023, is the final version compatible with these legacy systems. Mozilla emphasizes its commitment to providing security updates for deprecated operating systems, making Firefox ESR one of the few mainstream browsers still offering secure browsing on these platforms, as Google Chrome and Microsoft Edge have ceased support.

Tech Optimizer

August 20, 2025

I tested the best antivirus software for Windows: Here’s what I’d use to protect my PC

Windows Security is a free antivirus program pre-installed on every Windows PC, offering solid protection. Bitdefender provides a comprehensive antivirus solution with a yearly subscription. Malwarebytes is recommended as the top antivirus choice for Windows users, featuring a user-friendly interface and both free and paid versions. TotalAV is an affordable option with a built-in VPN and system tune-up tool. McAfee Total Protection offers extensive features, including identity theft coverage. Avast One is designed for gamers, providing a Do Not Disturb mode. uBlock Origin is an ad blocker that enhances browser security, while Brave is a secure web browser with built-in tracking and ad blocking features.

Tech Optimizer

April 10, 2025

6 overlooked security practices I implemented at home and I regret not using sooner

- Safeguarding technology is crucial in the digital age due to potential threats from various devices. - Two-factor authentication (2FA) enhances online account security by requiring a second code sent to a phone, email, or authentication app. - Biometric verification methods and hardware authentication devices like YubiKeys can further enhance security. - Backup codes should be printed when setting up 2FA, and passkeys offer a passwordless solution for securing accounts. - Ransomware can lock users out of data until a ransom is paid, and Windows 10 and 11 have a feature called Controlled Folder Access (CFA) to protect essential folders. - Windows Security provides baseline protection for PCs, and users should regularly check for updates and conduct manual scans. - Microsoft's PC Manager utility enhances system security by offering features for storage and app management alongside virus scanning. - Securing web browsers is vital, with unique settings available in browsers like Microsoft Edge, Firefox, and Chrome to improve privacy and security. - Regularly clearing browsing history and keeping browsers updated helps mitigate risks from malware and phishing attacks. - Securing Wi-Fi routers involves changing the default admin password and SSID, using strong encryption like WPA3, and regularly updating firmware. - Custom firmware like DD-WRT or OpenWrt can enhance router security and functionality.

Winsage

March 28, 2025

Mozilla warns Windows users of critical Firefox sandbox escape flaw

Mozilla released Firefox version 136.0.4 to address a critical security vulnerability, CVE-2025-2857, which could allow attackers to escape the browser's sandbox on Windows systems. This flaw, identified by developer Andrew McCreight, affects both standard and extended support releases of Firefox. Mozilla patched this issue in Firefox 136.0.4 and Firefox ESR versions 115.21.1 and 128.8.1. The vulnerability is similar to a recent zero-day exploit in Google Chrome, CVE-2025-2783, which was used in cyber-espionage campaigns against Russian entities. Additionally, Mozilla previously addressed another zero-day vulnerability, CVE-2024-9680, exploited by the RomCom cybercrime group, allowing code execution within Firefox's sandbox. Earlier in the year, Mozilla responded to two zero-day vulnerabilities exploited during the Pwn2Own Vancouver 2024 hacking competition.

Winsage

March 3, 2025

Microsoft Edge tests AI History Search, better security on Windows 11

Microsoft Edge is introducing new AI-driven features, including an experimental Web Push API for improved notification management in Windows 11 and enhanced security measures for downloads and clipboard activities. An AI History search feature is being developed, allowing users to receive AI recommendations from web passages during history searches, which can be activated by typing @history in the address bar. This feature may require a Microsoft account and will only apply to websites visited after activation. Additionally, Edge is optimizing memory usage with sleeping tabs and has identified new security features, including msProvenanceValidatorToggleOnByDefault for verifying downloaded file sources and msProtectedClipboard for protecting clipboard contents. The term msEdgeMetaOSOlympus has been mentioned, potentially indicating a redesign or new Windows release, though details remain unclear.

Winsage

December 21, 2024

Microsoft Warns Millions Of Windows Users—Change Your Browser Now

The FBI has warned of a rise in email attacks, particularly with the holiday season approaching, highlighting increased risks from sophisticated phishing emails and malicious websites enhanced by AI tools. Microsoft is promoting its Edge browser as a safer alternative for Windows users, with plans for pop-up notifications encouraging users to set Edge as their default browser. Despite a slight increase in Edge's market share, it still significantly lags behind Google Chrome. The Department of Justice may pursue actions against Google that could impact Chrome, while Microsoft continues to use security as a key reason for promoting Edge. Users are experiencing pop-up campaigns with confusing options regarding Edge, and while Edge has security advantages, Google is improving its own features. Microsoft may find more success in promoting Edge within the enterprise sector.

Tech Optimizer

November 28, 2024

Virus Bulletin Certification Confirms Priil’s Industry-Leading Antivirus Protection

Priil Ltd. achieved the Virus Bulletin (VB100) certification on October 22, 2024, for its Priil Internet Security anti-malware software, demonstrating its effectiveness in identifying and neutralizing cyber threats. The certification process evaluated Priil Security's threat detection capabilities, which met and exceeded Virus Bulletin's criteria. Priil Internet Security includes features such as a VPN, browser security, a firewall, a PC optimizer, a file shredder, and advanced real-time scanning. Priil was founded in 2020 and focuses on providing effective and budget-friendly antivirus solutions.

Tech Optimizer

October 23, 2024

Microsoft Defender review

Microsoft Defender has evolved from a basic antivirus tool to a comprehensive security solution, featuring parental controls, malware scanning, behavioral monitoring, email scanning, a password manager, and a secure browser. Launched in June 2022, Defender for Individuals, part of a Microsoft 365 subscription, offers benefits like dark web scanning, identity protection, and online storage (1TB for individuals, up to 6TB for families). The subscription costs for one user and is free for six users. Defender protects Windows, Mac, Android, and iOS devices, with new Windows PCs pre-installed with it. It includes advanced behavioral analysis, malware scanning, Secure Boot safeguarding, sandboxing, memory-integrity monitoring, and email attachment screening. Defender automatically scans when the system is idle and integrates with Microsoft OneDrive for data backup. It has achieved high scores in third-party evaluations, matching competitors like Bitdefender and Kaspersky with a 99.9% success rate in detecting known threats, though it struggles with zero-day attacks. Defender includes a built-in firewall, Smart App Control, and Edge browser security features. Its system impact can be resource-intensive during full scans, while quick scans are less demanding. The Windows Security Center serves as the hub for its features, and installation is automatic on new PCs, with robust support options available.

Winsage

August 1, 2024

Google Chrome Adds App-Bound Encryption to Protect Cookies from Malware

Google has introduced app-bound encryption for its Chrome browser to enhance security against information-stealing malware on Windows. This method utilizes the Data Protection API (DPAPI) to protect data at rest but improves upon it by integrating the application's identity into the encrypted data, limiting access to only Chrome. This enhancement was included in the release of Chrome 127 and initially focuses on securing cookies, with plans to extend protection to passwords, payment information, and other authentication tokens. Organizations using roaming profiles are advised to implement the ApplicationBoundEncryptionEnabled policy for optimal security. Additionally, Google has previously introduced a technique to monitor access to browser cookies and credentials using a Windows event log. This development is part of broader security improvements in Chrome, which also include enhanced Safe Browsing protocols and automated scans for harmful downloads.