Kaspersky Archives

Tech Optimizer

February 26, 2026

Avast Antivirus Just Got Smarter: Is It Finally Worth Your Money?

Avast Antivirus has introduced advanced AI tools, enhanced browser protection, and new privacy features in the U.S. market. It offers real-time malware protection, phishing shields, and Wi-Fi scanning. Avast's product lineup includes a free version, a premium security plan, and Avast One, catering to different user needs. Independent lab tests show Avast ranks highly in malware blocking, competing with brands like Bitdefender and Kaspersky. However, users should be cautious of upselling practices and data collection concerns. The free version provides strong protection, while paid plans offer additional features like VPN and advanced ransomware protection. Avast is accessible on various platforms, and pricing fluctuates due to promotions. Users are advised to assess their needs and be mindful of renewal rates before subscribing.

Tech Optimizer

February 19, 2026

How to Install McAfee Antivirus on Windows 11 or 10

Installing third-party antivirus software like McAfee on Windows 11 can be challenging due to the built-in Windows Security, which can complicate the installation process. Users may face issues such as silent failures from conflicting software, permission problems on restricted machines, or restrictions due to S Mode on new laptops. Windows 11 includes Windows Security, which is effective for malware protection, but McAfee may be necessary for compliance, additional features, or centralized protection for multiple devices. McAfee supports Windows 11 Home, Pro, and Education editions but not Enterprise. The minimum hardware requirements include a processor of 1 GHz or faster, at least 2 GB of RAM (4 GB recommended), 1.3 GB of free disk space, an internet connection for download and updates, and a display resolution of at least 1024×768. McAfee requires a persistent internet connection for activation and updates. Before installing McAfee, users should check if their device is in S Mode, as McAfee cannot be installed in this mode. They must remove any existing antivirus software completely, as leftover files can interfere with the installation. Users should also ensure that Windows 11 is up to date and verify that there is enough disk space available. To download McAfee, users should go directly to the McAfee trial page to avoid scams. After downloading, they need to run the installer and restart their computer after installation. Users should then activate McAfee, run a manual update, and conduct a full system scan. Common installation problems include freezes during download, errors due to S Mode, and issues with Windows Security not recognizing McAfee as the active antivirus. Users can verify that McAfee is functioning correctly by checking the system tray icon, Windows Security settings, and the McAfee dashboard. To uninstall McAfee, users should go to Settings > Apps > Installed Apps, select McAfee, and follow the prompts to remove it. After uninstallation, Windows Security will reactivate automatically. McAfee offers several plans for Windows users, including Basic, Essential, Premium, and Advanced, each with different features and device limits. The Basic plan is suitable for single-device users without additional needs, while families may benefit from the Essential or Premium plans.

AppWizard

February 19, 2026

New backdoor found in Android tablets targeting users in Russia, Germany and Japan

Researchers from Kaspersky have discovered an Android backdoor named Keenadu, embedded in the firmware of devices, allowing it to infect tablets before they reach consumers. This malware, affecting over 13,700 users globally, primarily targets advertising fraud by hijacking browser search engines, monitoring app installations, and generating fraudulent revenue. Tablets from various manufacturers, including Alldocube, have been found compromised, with the malware likely inserted during the firmware build stage through a compromised supply chain. Keenadu has multiple variants, some hidden in applications, and employs evasion tactics based on device language settings and time zones. It cannot be removed using standard Android security tools, and users are advised to install clean firmware or replace their devices entirely.

AppWizard

February 17, 2026

New Keenadu backdoor found in Android firmware, Google Play apps

A sophisticated Android malware named Keenadu has been discovered embedded in the firmware of various device brands, compromising all installed applications and granting unrestricted control over infected devices. It employs multiple distribution methods, including compromised firmware images delivered over-the-air, access via backdoors, embedding in system applications, modified applications from unofficial channels, and infiltration through apps on Google Play. As of February 2026, Keenadu has been confirmed on approximately 13,000 devices, primarily in Russia, Japan, Germany, Brazil, and the Netherlands. The firmware-integrated variant remains dormant if the device's language or timezone is associated with China and ceases to function without the Google Play Store and Play Services. While currently focused on ad fraud, Keenadu has extensive capabilities for data theft and risky actions on compromised devices. A variant embedded in system applications has limited functionality but elevated privileges to install apps without user notification. The malware has been detected in the firmware of Android tablets from various manufacturers, including the Alldocube iPlay 50 mini Pro. Kaspersky has detailed how Keenadu compromises the libandroid_runtime.so component, making it difficult to remove with standard Android OS tools. Users are advised to seek clean firmware versions or consider replacing compromised devices with products from trusted vendors.

Tech Optimizer

February 16, 2026

What is the best PC antivirus for 2026: Acronis True Image vs. competitors

In 2026, traditional antivirus solutions are becoming outdated due to the rise of sophisticated cyber threats, including AI-driven ransomware and advanced phishing schemes. The FBI Internet Crime Report states that cybercrime losses exceeded .5 billion in 2023, with projections by Cybersecurity Ventures estimating costs could reach trillion annually by 2025. Research from IBM shows that organizations without a tested recovery plan face higher costs and longer downtimes. Built-in protections like Windows Defender and MacOS XProtect offer basic security but may leave gaps, necessitating comprehensive third-party antivirus solutions. Acronis True Image is highlighted for its unique combination of real-time malware protection and full system backup capabilities, enabling users to recover quickly from incidents. Other leading antivirus solutions, such as Norton 360, Bitdefender, McAfee, and Kaspersky, excel in threat prevention but lack integrated recovery options. Acronis emphasizes the importance of both security and continuity, preparing users for both cyber incidents and everyday failures.

Tech Optimizer

February 16, 2026

How to Uninstall McAfee on Windows 11 (3 Methods Including winget)

To uninstall McAfee on Windows 11, go to Settings → Apps → Installed apps, find McAfee, and select Uninstall. Alternatively, use the command winget uninstall --id "McAfee.TotalProtection" in an elevated terminal. After uninstalling, run McAfee’s MCPR removal tool to remove any leftover files and registry entries. Windows Security (Defender) will automatically activate after McAfee is removed. McAfee is often preinstalled on Windows 11 laptops by manufacturers like Dell, HP, Lenovo, and ASUS. It is recommended to create a system restore point before uninstalling and ensure you have administrative rights. After uninstalling, check for any remaining McAfee entries in installed apps, running services, Task Manager processes, leftover folders, and scheduled tasks. If issues arise during uninstallation, booting into Safe Mode or using the MCPR tool can help. Windows Security is a built-in antivirus that activates automatically after McAfee removal, providing protection.

Tech Optimizer

February 11, 2026

eScan Antivirus Update Servers Compromised to Deliver Multi-Stage Malware

MicroWorld Technologies confirmed a breach of its eScan antivirus update infrastructure, allowing attackers to deliver a malicious downloader to enterprise and consumer systems. Unauthorized access was detected, leading to the isolation of affected update servers for over eight hours. A patch was released to revert the changes made by the malicious update, and impacted organizations were advised to contact MicroWorld for assistance. The attack occurred on January 20, 2026, when a compromised update was distributed within a two-hour window. The malicious payload, introduced through a rogue "Reload.exe" file, hindered eScan's functionality, blocked updates, and contacted an external server for additional payloads. This rogue executable was signed with a fake digital signature and employed techniques to evade detection. It also included an AMSI bypass capability and assessed whether to deliver further payloads based on the presence of security solutions. The malicious "CONSCTLX.exe" altered the last update time of eScan to create a false sense of normalcy. The attack primarily targeted machines in India, Bangladesh, Sri Lanka, and the Philippines, highlighting the rarity and seriousness of supply chain attacks through antivirus products.

Tech Optimizer

February 11, 2026

How to Disable Windows 11 Defender: Temporary and Permanent

Microsoft Defender Antivirus is the built-in security solution for Windows 11, protecting against viruses, malware, and ransomware. Users may need to disable it temporarily or permanently for various reasons, including software installation, penetration testing, performance issues, transitioning to third-party antivirus solutions, or troubleshooting conflicts. Temporary disabling can be done through the Windows Security app, which will automatically re-enable after a restart. Permanent disabling requires changes in Group Policy, applicable only to Windows 11 Pro, Enterprise, and Education editions, and necessitates disabling Tamper Protection first. Another method for permanent disabling is installing a third-party antivirus, which automatically deactivates Defender's real-time protection. Windows 11 Home users cannot use Group Policy for permanent disabling but can still temporarily disable Defender or install a third-party antivirus. Disabling Defender exposes the system to threats, and users should ensure they have alternative protection in place. Major Windows updates may reset Defender settings, and caution is advised when modifying system settings.

Tech Optimizer

January 22, 2026

Hackers Weaponized 2,500+ Security Tools to Terminate Endpoint Protection Before Deploying Ransomware

A large-scale campaign is exploiting the truesight.sys Windows security driver from Adlice Software’s RogueKiller antivirus to disable endpoint detection and response (EDR) and antivirus solutions, facilitating the deployment of ransomware and remote access malware. This attack utilizes over 2,500 validly signed variants of the driver, allowing attackers to manipulate legacy driver signing rules to load pre-2015 signed drivers on Windows 11 machines. The vulnerable TrueSight driver exposes an IOCTL command that enables attackers to terminate security processes, providing them with kernel-level access to bypass user-mode protections. The infection chain typically starts with phishing emails or compromised sites, leading to the installation of a downloader that retrieves additional malicious components. The malware establishes persistence and deploys an EDR killer module targeting nearly 200 security products. Once defenses are disabled, the final payload, often a remote access trojan or ransomware, executes with minimal visibility, completing the attack in as little as 30 minutes.

Tech Optimizer

January 7, 2026

Norton in 2026: Is the Old-School Antivirus Brand Still Worth Your Trust?

Norton has evolved into a comprehensive cybersecurity suite by 2026, transitioning from traditional antivirus software to a holistic solution under Gen Digital Inc. Its offerings include Norton 360, which provides real-time malware and ransomware protection, a built-in unlimited data VPN, password management, dark web monitoring, and identity protection on higher tiers. The Norton 360 Deluxe plan is popular for households, offering high protection scores, a usable VPN, dark web monitoring, cross-platform support, and identity protection features. Users appreciate its ease of use, strong protection record, and the value of the VPN, while some express frustration with upselling, auto-renew pricing, and performance on older machines. Norton competes with brands like Bitdefender, Kaspersky, and McAfee, with its all-in-one convenience being a key advantage. It is suitable for families and less tech-savvy users but may not be ideal for those preferring minimalist setups or who have older hardware.