global cybersecurity Archives

Winsage

October 23, 2025

Russian hackers replace malware with new tools, Windows updates cause login issues, campaign targets high-profile servers

Mark your calendars for this Friday's Super Cyber Friday, featuring the session titled "Hacking the Death of EDR." Russian state-sponsored hacking group Coldriver has introduced three new malware strains: NOROBOT, YESROBOT, and MAYBEROBOT, following the exposure of their previous tool, LostKeys. The new malware is designed to evade detection and extract sensitive data from high-value targets. Microsoft has acknowledged that Windows updates released since August 29th are causing login failures on systems with duplicate Security Identifiers (SIDs), leading to authentication failures. Microsoft recommends rebuilding affected systems or contacting support for a temporary fix. Kaspersky researchers have identified a likely Chinese-speaking threat actor behind the “PassiveNeuron” campaign, targeting government, financial, and industrial servers across Asia, Africa, and Latin America since 2024, using custom implants and Cobalt Strike. CISA has added high-severity vulnerabilities in Oracle E-Business Suite, Microsoft Windows SMB Client, Kentico Xperience CMS, and Apple JavaScriptCore to its Known Exploited Vulnerabilities catalog, requiring federal agencies to patch by November 10th. Researchers from France's CEA and Soitec have unveiled a new chip architecture called Fully Depleted Silicon-on-Insulator, designed to defend against laser fault injection attacks on automotive microcontrollers. During Pwn2Own Ireland 2025, researchers exploited 34 zero-days across various devices, earning a total of 2,500 in rewards, with Team DDOS chaining eight zero-days to compromise a QNAP router and NAS. Koi Security researchers discovered a new self-propagating malware named GlassWorm, which has infected approximately 36,000 developer systems by exploiting Visual Studio Code extensions, pilfering credentials, and installing remote access tools. PolarEdge is a botnet malware targeting Cisco, ASUS, QNAP, and Synology routers, first detected in February, which installs a TLS-based backdoor to fingerprint hosts and execute tasks while employing anti-analysis techniques.

Tech Optimizer

October 22, 2025

4 free antiviruses that protect, detect and remove viruses and malware without slowing down your PC

Experiencing a slowdown in computer performance, delayed program launches, or unexpected pop-ups may indicate a digital infection. Free antivirus software can effectively address these issues. Free versions from reputable companies now rival paid counterparts in detection capabilities and performance. Windows Defender is a built-in solution with real-time scanning, a firewall, and ransomware protection. Avast Free Antivirus offers a user-friendly interface and intelligent detection, including network scans. AVG AntiVirus Free is known for minimal resource consumption and shares a database with Avast. Kaspersky Free provides substantial protection against phishing and malware without intrusive ads. Choosing the right antivirus depends on usage patterns; casual users may suffice with free options, while those handling sensitive data might need premium versions. Lightweight solutions like AVG or Windows Defender are suitable for older computers, while Avast or Kaspersky are better for modern laptops connecting to public Wi-Fi. Regular updates for free antivirus programs are essential for protection against emerging threats. Real-time detection is crucial for blocking threats before they affect the system, and most contemporary free solutions utilize cloud-based systems for enhanced security. Independent assessments show that effective free antivirus programs consume minimal system resources. Safe online habits, such as avoiding unfamiliar links and software from questionable sources, complement antivirus protection. Installing multiple antivirus programs can lead to conflicts, so it's best to use one reliable solution. Comprehensive protection can be achieved without financial investment by making informed choices.

Tech Optimizer

September 12, 2025

Best Antivirus for Windows (September 2025): Avast Awarded Top PC Security Solution by Software Experts

Avast has been recognized as the top antivirus solution for Windows in Software Experts' September 2025 annual review. The evaluation highlighted Avast's effectiveness in addressing cybersecurity threats and its commitment to enhancing digital protection, privacy, and user experience. Avast Premium Security offers real-time threat protection, anti-scam intelligence, email and web safety, and integrates AI-powered tools for enhanced security. Avast Ultimate combines Avast Premium Security with additional tools like SecureLine VPN and AntiTrack, allowing activation on up to 10 devices. Additionally, Avast received recognition from AV-TEST as one of the best Windows antivirus software for home users in evaluations conducted during May and June 2025.

AppWizard

September 9, 2025

New RatOn Android Malware Targets Banking Apps and Crypto Wallets via NFC Attacks

A new strain of Android malware called RatOn was identified on July 5, 2025, targeting banking applications and cryptocurrency wallets, particularly in the Czech Republic. It integrates near-field communication (NFC) relay attacks with automated transfer system (ATS) capabilities, allowing attackers to hijack devices and execute unauthorized transactions. RatOn builds on tactics from previous malware like PhantomCard and employs overlay attacks to capture user credentials. It gains root-level access through vulnerabilities such as KernelSU, enabling call hijacking to bypass two-factor authentication. RatOn specifically targets local banking applications and cryptocurrency wallets, scanning for wallet apps and extracting private keys. Defending against RatOn involves enabling app sideloading restrictions, using reputable antivirus software, and monitoring NFC settings, while banks are enhancing anomaly detection systems. The emergence of RatOn raises concerns about mobile security globally, with calls for stricter app store vetting and improved NFC protocols. Experts predict that future malware will increasingly use AI-driven adaptations, complicating detection efforts.

Tech Optimizer

August 21, 2025

Inside Quick Heal’s Journey: Building India’s First Antivirus to a Global Brand

Quick Heal Technologies was founded by brothers Kailash and Sanjay Katkar in Pune, focusing on antivirus solutions to combat rising computer viruses. It became India's first homegrown antivirus and is now a globally recognized company. Despite India's digital economy expanding, only 7% of organizations are mature in cybersecurity readiness, facing challenges such as a skills deficit, fragmented security implementations, and a disconnect between executive priorities and security realities. India needs over 800,000 cybersecurity professionals, and educational institutions must integrate practical threat scenarios into their curricula. The "Make in India" movement is fostering indigenous cybersecurity solutions that address local threats while being globally relevant. Quick Heal utilizes AI to enhance threat detection and response, analyzing vast amounts of data while emphasizing the irreplaceable role of human expertise in strategic decision-making. Emerging threats include AI-powered social engineering, supply chain attacks, and cloud misconfigurations. Organizations should adopt Zero Trust architectures, invest in continuous security training, and utilize integrated threat intelligence. Quick Heal's leadership emphasizes solving real problems for customers and encourages young engineers to gain practical experience in cybersecurity. Recommended strategies for CISOs include aligning security investments with business priorities, embracing automation, and establishing integrated threat intelligence for effective risk management.

Tech Optimizer

August 12, 2025

Why SMEs can’t afford to ignore cybersecurity

Small and medium-sized enterprises (SMEs) are crucial to the Indian economy and are increasingly adopting digital tools for growth. However, they face significant cybersecurity risks due to misconceptions about their vulnerability. SMEs often have limited IT resources, outdated systems, and poor security practices, making them attractive targets for cybercriminals. The World Economic Forum's Global Cybersecurity Outlook 2025 indicates that 60% of organizations consider geopolitical tensions in their security strategies, highlighting the risks for digitizing economies like India. Cyber incidents can have severe consequences for SMEs, including operational disruptions and damage to customer trust. Cybersecurity should be viewed as a strategic investment rather than a discretionary expense, with practical measures such as firewalls, antivirus software, strong password policies, and employee training recommended. Additionally, having recovery plans and incident response procedures in place is essential for minimizing downtime and protecting business reputation. As India aims for Viksit Bharat 2047, robust cybersecurity measures are critical for sustainable growth.

Tech Optimizer

August 2, 2025

Best Antivirus for Windows 10 (2025): Avast Awarded Top PC Security Solution by Software Experts

Avast has been recognized by Software Experts as a leading antivirus solution for Windows 10 in 2025, specifically highlighting Avast Premium Security and Avast Ultimate for their robust security frameworks, advanced privacy features, and user-friendly interfaces. Avast Premium Security offers real-time protection against viruses, malware, and ransomware, a ransomware shield, webcam protection, scam detection, anti-phishing protection, an advanced firewall, and email scanning. Avast Ultimate includes additional tools such as Avast SecureLine VPN for internet traffic encryption, Avast Cleanup Premium for system optimization, and Avast AntiTrack for digital privacy. Avast is a global cybersecurity firm that provides comprehensive protection across various platforms and has been acknowledged by independent testing labs.

AppWizard

April 10, 2025

China’s Surveillance Push via Android Apps – Australian Cyber Security Magazine

The UK Cyber League has supported a new advisory by the National Cyber Security Centre (NCSC UK) in collaboration with several international partners, including the Australian Cyber Security Centre, the Canadian Centre for Cyber Security, the German Federal Intelligence Service, the German Federal Office for the Protection of the Constitution, the New Zealand National Cyber Security Centre, the United States Federal Bureau of Investigation, and the United States National Security Agency. The advisory focuses on two spyware variants, BADBAZAAR and MOONSHINE, and provides guidance for app store operators, developers, and social media companies to enhance user safety. Spyware is defined as malware that installs on a device without the user’s consent, collecting and sending data to a third party. The advisory emphasizes the need for vigilance and proactive measures against such threats.

Tech Optimizer

September 25, 2024

MoneyGram global cybersecurity issue hits Tonga services – Kaniva Tonga News

MoneyGram International's services have been offline for several days due to a cybersecurity incident, impacting its payment systems in Tonga. This disruption has affected the Tongan diaspora's ability to send and receive remittances. MoneyGram is investigating the issue and has engaged cybersecurity experts and law enforcement to restore services. The company has not provided a timeline for service restoration. MoneyGram has partnered with the Bank of South Pacific since 2015 to facilitate money transfers in Tonga and Samoa, where over 0 million is remitted annually, primarily from Australia, New Zealand, and the United States. The partnership is significant due to the bank's status in the Pacific market and its expanded operational network following the acquisition of Westpac's operations in the region.

Tech Optimizer

August 1, 2024

Worldwide tech outages impacting airlines, businesses running Microsoft software

On Friday, a significant wave of technical outages affected airlines, businesses, and organizations reliant on Microsoft software due to a technical issue identified by CrowdStrike. Systems powered by Apple and Linux remained operational. CrowdStrike, which provides antivirus solutions to Microsoft, is working to resolve the problem. The outages caused operational challenges, particularly for airlines, leading to delays and cancellations. Organizations were urged to explore contingency plans and alternative solutions. The incident highlighted the vulnerabilities of relying on a single software provider and the importance of robust cybersecurity measures.