cyber threats Archives

Winsage

December 27, 2024

Microsoft warns Windows 11 install media bug blocks future security updates

Microsoft has issued a caution regarding the installation of Windows 11 version 24H2 using physical media, specifically if the media contains security updates from October 8 to November 12, 2024. In such cases, the operating system may not accept future security updates. This issue does not affect systems receiving updates through Windows Update or the Microsoft Update Catalog, nor does it impact installations using the December 2024 security update. Microsoft recommends creating new installation media that includes the December 2024 security update to ensure future updates can be received. Users who have already installed version 24H2 with the October or November updates should apply the December 2024 security update to restore their system's ability to accept future updates. Microsoft is working on a permanent solution to this issue. Users have also reported challenges with the Disk Cleanup tool and speaker volume spikes since the launch of version 24H2. Maintaining an updated version of Windows 11 is essential for security, stability, and performance, as updates address vulnerabilities and fix bugs.

Winsage

December 27, 2024

End of Windows 10: Microsoft will phase out your computer by 2025

Microsoft will end support for Windows 10 in October 2025, meaning it will no longer receive free security updates. To upgrade to Windows 11, a computer must support TPM 2.0, which many older devices lack. A report indicates that about one in five computers could be left behind due to this requirement, particularly those purchased before 2021. Users should check if their device supports TPM 2.0 and consider budgeting for a new computer if it does not.

Tech Optimizer

December 27, 2024

Data protection advancements expected to shape 2025 security

Andrew Eva, the Global CIO of Assured Data Protection, predicts that by 2025, there will be a seamless integration of backup systems with ransomware detection, antivirus technologies, and intrusion detection systems. He highlights a collaboration between Rubrik and Google to provide enterprise customers with insights into known exploits for better early detection of malicious codes. Disaster recovery systems will take on a more frontline role in cyber threat management, utilizing machine learning to identify potential viruses. Ransomware is expected to remain the top cyber threat, prompting organizations to prioritize disaster recovery and backup solutions. Concerns about data security in relation to artificial intelligence will lead organizations to seek assurances regarding data protection from managed service providers (MSPs). The criteria for cyber insurance are tightening, making MSPs essential for businesses to meet these requirements. There is also an anticipated surge in demand for Backup-as-a-Service (BaaS), especially in healthcare, driven by resource constraints and a shift towards operational expenditures.

AppWizard

December 25, 2024

Android users who use Amazon are placed on red alert and told to delete app now

A recent alert from McAfee has raised concerns for Android users regarding a health application called BMI CalculationVsn available on Amazon's Appstore. This app, which appears to be a simple Body Mass Index calculator, is capable of recording on-screen activity, accessing private SMS messages, and scanning devices for sensitive information. McAfee discovered that the app secretly steals the package names of installed apps and incoming SMS messages. Following this discovery, McAfee alerted Amazon, which removed the app from its platform. Users who have downloaded the app are advised to uninstall it immediately. McAfee emphasizes the importance of vigilance in digital security, recommending that Android users install reliable antivirus software and carefully review permission requests from apps. Users should also be aware of unusual app behavior, such as decreased device performance, rapid battery drain, and unexpected spikes in data usage, which may indicate malicious activity.

Winsage

December 25, 2024

3 reasons you get more viruses on Windows than on Mac or Linux

The majority of malware is spread through social engineering, targeting users with limited computer security knowledge, particularly among Windows users. Windows has a larger user base, with approximately 1.6 billion devices and over 70% market share, making it a prime target for malware. In contrast, Macs account for about 15% of the market and benefit from robust security protocols, while Linux holds around 5% and its users generally possess higher technical expertise. Windows allows many applications to run with administrator access by default, which can create vulnerabilities, whereas Mac and Linux require explicit permissions for actions, enhancing security. Apple uses digital signatures and sandboxing to protect against malicious software, while Windows' security features are often limited to Pro and Enterprise editions. User behavior and knowledge significantly influence the likelihood of encountering malware, regardless of the operating system used.

Tech Optimizer

December 24, 2024

How To Secure Your Data in the New Year with Norton VPN

- It is important to assess online security as part of digital well-being. - Norton provides tools to enhance internet security, including VPNs, password managers, and antivirus software. - A VPN (Virtual Private Network) secures online activities, especially on public WiFi, by masking the IP address and minimizing tracking. - Norton offers various VPN plans: VPN Standard, VPN Plus (covers up to five devices and includes protection against viruses and malware), and VPN Ultimate (beneficial for families). - A password manager allows users to maintain one secure password for all accounts and securely stores login information. - Norton’s Password Manager is free with Norton VPN Plus and Norton VPN Ultimate plans and generates complex passwords. - Antivirus software scans devices for malware and viruses, with Norton offering a 100% Virus Protection Promise and dark web scanning for compromised personal information. - The Norton VPN Ultimate plan includes features for managing screen time and blocking inappropriate content for families. - Norton offers up to 54% off the first year for annual plan subscriptions.

Tech Optimizer

December 24, 2024

‘Fix It’ social-engineering scheme impersonates several brands

Malicious actors are increasingly exploiting web browsers to deliver malware, often bypassing conventional antivirus defenses through sophisticated social engineering. A notable tactic involves copying harmful commands into the clipboard, allowing victims to execute them unknowingly. Recent investigations revealed a campaign using malicious advertisements and counterfeit pages that mimic reputable software brands, leading victims to a fake Cloudflare notification that prompts them to execute specific key combinations. This process triggers PowerShell code that retrieves and installs malware. The investigation began with a suspicious advertisement for a 'notepad' application, which redirected users to a Cloudflare-like page asking them to verify they are human. Instead of a standard CAPTCHA, users encountered a prompt instructing them to follow steps that would inadvertently execute a malicious command. By clicking a 'Fix It' button, the harmful command is copied to the clipboard, and users are led to paste and run it, initiating a download from a remote domain. The campaign targeted several brands, including Microsoft Teams, FileZilla, UltraViewer, CutePDF, and Advanced IP Scanner. The same domain linked to the malicious PowerShell command for Notepad++ also appeared in another campaign. Indicators of compromise include various malicious domains and URLs associated with the malware and its command and control server. Malwarebytes provides protection against these threats.

Tech Optimizer

December 23, 2024

Stay Ahead of Cyber Threats: Best Antivirus Software for 2025

One in five organizations experiences a cyberattack annually. The complexity and frequency of cyber threats are expected to increase in the coming years. Comprehensive antivirus software is essential for protection against various dangers, including malware, spyware, ransomware, and phishing. Prioritizing cybersecurity helps organizations protect sensitive data and build trust with clients and stakeholders.

AppWizard

December 23, 2024

Urgent Android warning for anyone who uses Amazon – delete dangerous app now

McAfee's security team discovered a malicious app named "BMI CalculationVsn" in Amazon's Android Appstore, which pretended to be a health tracker but was capable of screen recording, password theft, and accessing private SMS messages. Following the report, Amazon removed the app from its platform, and users who downloaded it are advised to uninstall it immediately. McAfee recommends that Android users install reliable antivirus software, scrutinize permission requests before downloading apps, and monitor app behavior for unusual activity to enhance their security.

Winsage

December 21, 2024

Microsoft Warns Millions Of Windows Users—Change Your Browser Now

The FBI has warned of a rise in email attacks, particularly with the holiday season approaching, highlighting increased risks from sophisticated phishing emails and malicious websites enhanced by AI tools. Microsoft is promoting its Edge browser as a safer alternative for Windows users, with plans for pop-up notifications encouraging users to set Edge as their default browser. Despite a slight increase in Edge's market share, it still significantly lags behind Google Chrome. The Department of Justice may pursue actions against Google that could impact Chrome, while Microsoft continues to use security as a key reason for promoting Edge. Users are experiencing pop-up campaigns with confusing options regarding Edge, and while Edge has security advantages, Google is improving its own features. Microsoft may find more success in promoting Edge within the enterprise sector.