Phishing Archives

Tech Optimizer

April 7, 2025

Scanguard

Scanguard is owned by Total Security LTD and offers a comprehensive security and optimization suite that includes virus protection, system performance improvements, junk file removal, a password vault, and a VPN. Its security features include real-time protection against malware, ransomware, spyware, and adware, facilitated by specialized guards. A free version is available for Windows, but it has limitations regarding update speed. The initial scan on a 512 GB SSD takes under five minutes and covers various checks. The app prompts users to upgrade for certain features, although discounts are available for first-time users. Core features include Malware Guard, Ransomware Guard, Spyware Guard, Aware Guard, and WebShield for real-time protection against malicious sites. Scanguard also offers identity theft protection services and a system optimizer that cleans junk files and manages applications. An Android app is available, but there is no iPhone app, and the Android version must be downloaded from the Scanguard website. Scanguard's pricing includes a free version and a paid plan with a promotional rate for the first year, with payment through PayPal. The paid plan offers real-time protection, cloud-based threat detection, and customer support. Recent evaluations show a detection rate of 96.94% in a VB100 test, with a 0.000% false alarm rate, but it is not currently VB100 certified. The user interface is modern and intuitive, though the installation process may take time due to database updates.

Tech Optimizer

April 7, 2025

Sakura RAT Released on GitHub Can Bypass Antivirus and EDR Tools

Sakura RAT is a newly developed remote administration tool available on GitHub, designed for use by malware analysts and security researchers. It features capabilities such as hidden browsing, hidden virtual network computing (HVNC), fileless execution, multi-session control, and anti-detection mechanisms to evade antivirus and endpoint detection systems. While marketed for research purposes, its open availability raises concerns about potential misuse by cybercriminals for activities like data exfiltration and ransomware deployment. Cybersecurity experts are advocating for the removal of the repository from GitHub and calling for improved detection systems to combat the risks posed by such advanced tools.

Tech Optimizer

April 5, 2025

I put Trend Micro and McAfee antivirus in a head to head showdown – here’s how it went

McAfee and Trend Micro are two antivirus software options with distinct features. Specifications: - McAfee costs per year for a single user; Trend Micro starts at per year for 2 adults and 4 children. - McAfee supports Windows 10 and 11; Trend Micro supports Windows 8.1 to 11. - Malware protection is rated as good for McAfee and adequate for Trend Micro. - Both do not offer backup software. - System resource usage is light to heavy for both. Costs and Coverage: - Both do not have a free tier but offer a 30-day trial. - Trend Micro's entry-level Antivirus + Security is priced at , while McAfee's Basic plan typically retails for for a single device. - Trend Micro offers packages for 3 devices, 5 systems, and 10 systems, while McAfee's plans cover up to two adults and four children. Antivirus Protection: - Trend Micro uses heuristic behavioral analysis, while McAfee employs cloud-based infrastructure and machine learning. - Both provide periodic updates, but McAfee features Ransom Guard for monitoring file changes. Antivirus Performance: - McAfee has a 99.8% protection rate; Trend Micro has a 98.1% rate. - McAfee has fewer false positives (10) compared to Trend Micro (76). Security and Privacy Features: - Trend Micro includes a Firewall Booster; McAfee emphasizes phishing protection and personal data privacy. Performance and System Impact: - Trend Micro has minimal impact on system resources; McAfee uses more resources during scans. Interface: - Trend Micro's interface is user-friendly; McAfee's interface is simplified but less customizable. Installation and Support: - McAfee's installation takes under five minutes; Trend Micro's takes over twelve minutes. - McAfee offers 24/7 support; Trend Micro's support is limited to business hours unless on a premium plan. Overall, McAfee is rated higher in performance and features, while Trend Micro is noted for its efficient resource management and user-friendly interface.

Winsage

April 5, 2025

Microsoft Confirms Password Deletion For Windows Users—What You Do Now

Microsoft is transitioning away from passwords to enhance security, encouraging users to adopt passkeys. Passkeys are securely stored secrets on a user's device, unlocked through biometrics, PINs, or patterns, making them resistant to phishing and eliminating the need for complex passwords. Users can set up passkeys by signing into their Microsoft account's Advanced Security Options or Security Info, selecting a sign-in method, and following on-screen instructions. Once established, signing in is straightforward, requiring only the chosen authentication method. Microsoft is prioritizing passkeys for new accounts and refining its sign-in logic to improve efficiency, with passkeys being three times faster than traditional passwords. Passkeys can be used across devices and applications that support them, with Windows Hello facilitating authentication.

Tech Optimizer

April 4, 2025

My takeaway when it comes to antivirus software and gaming

Antivirus software can slow down a PC during gaming, with performance dips ranging from negligible to about 20 percent during routine monitoring, and up to 57 percent during full or partial scans. Despite the potential for improved performance by disabling antivirus software, security experts advise against it due to ongoing threats like viruses and malware. Instances of malware in downloadable game files and phishing scams targeting gaming communities highlight the importance of maintaining antivirus protection. Gamers can consider antivirus solutions designed for gaming that minimize system impact, schedule scans for non-gaming times, and create exclusion lists for game files to enhance performance while ensuring security.

Tech Optimizer

April 3, 2025

1,500+ PostgreSQL Servers Compromised With Fileless Malware Attack

A cryptojacking campaign has targeted over 1,500 organizations by exploiting inadequately secured PostgreSQL database servers. The attackers, identified as JINX-0126, use advanced techniques including credential brute-forcing and fileless execution to deploy Monero (XMR)-mining malware. Approximately 30% of cloud-hosted PostgreSQL servers are affected due to weak or default credentials. The attackers execute commands using PostgreSQL’s COPY FROM PROGRAM function, bypassing standard detection mechanisms. They have been linked to three cryptocurrency wallets with around 550 active mining workers, generating a hashrate of 4.04 GH/s and approximately €10.40 per hour in XMR revenue. The attack begins with credential spraying against default accounts, followed by an SQL injection to fetch the payload. The malware operates in memory, modifies PostgreSQL’s configuration to maintain persistence, and creates cron jobs for reactivation. The campaign reveals significant security gaps in cloud environments, with recommendations for improved access controls and monitoring.

Tech Optimizer

April 2, 2025

Shield up to 5 devices from the evil internet with McAfee Total Protection

McAfee Total Protection offers a two-year subscription for less than , covering up to five Apple devices, significantly reduced from the regular price of 9. The subscription includes AI-powered antivirus protection, a virtual private network, web protection, identity theft protection, and personalized safety education. It also features a password manager, personal data exposure protection, and credit monitoring. This limited-time offer allows stacking of codes for up to ten years of coverage, but the software can only be added to a maximum of five devices at once.

Tech Optimizer

April 1, 2025

This Antivirus Software Is So Strong That It Will Humiliate The Bad Guys Of The Cyber World (50% Off)

Bitdefender offers comprehensive protection against current and emerging online threats with a lightweight design that maintains device performance. It is currently providing a 50% discount on its multi-device bundles, including the Total Security bundle, which covers up to five devices across various platforms for an introductory price. The Internet Security and Antivirus Plus bundles are also available at discounted rates for Windows PCs. All bundles include features like File Shredder, Social Network Protection, and safe online banking through Safepay. Bitdefender utilizes advanced AI technology to predict and neutralize threats while optimizing device performance.

AppWizard

April 1, 2025

Google’s Play Store Warning—Do Not Update This Setting

A sophisticated trojan named TsarBot is targeting over 750 legitimate banking and shopping applications on Android devices. It overlays a counterfeit login screen on real apps to capture user credentials. TsarBot is believed to have Russian origins and can remotely control the device's screen, simulating user interactions and capturing device lock credentials through a deceptive lock screen. The trojan is typically installed from phishing websites, where a dropper application delivers the TsarBot APK file. Once installed, it disguises itself as the Google Play Services app and urges users to enable Accessibility services. Users are advised to avoid installing apps from outside the Google Play Store, ensure Play Protect is enabled, and only enable Accessibility Services when necessary to mitigate risks.

Tech Optimizer

March 31, 2025

Watch Out for This Info-Stealing Malware on Windows

A new malware strain called CoffeeLoader has been identified, posing a significant risk to gamers by masquerading as a legitimate ASUS utility, specifically the Armoury Crate software. Once it infiltrates a system, it deploys the Rhadamanthys infostealer, which can extract sensitive information such as credentials from web browsers, email clients, cryptocurrency wallets, and password managers. CoffeeLoader evades detection by most security tools by operating on the GPU instead of the CPU and using advanced techniques like call stack spoofing, sleep obfuscation, and exploiting Windows fibers. To protect against CoffeeLoader, users should exercise caution when downloading software, navigate directly to official websites, avoid suspicious links, and adhere to basic cybersecurity practices. If infection is suspected, users should disconnect from the internet, reboot in safe mode, delete temporary files, and check Task Manager for unusual activity. Employing a reliable malware scanner can help identify and eliminate infections.