Category: Science and Technology

Science and Technology

[Fox News] How hackers are exploiting Windows SmartScreen vulnerability to spread malware

If you use a Windows computer, it’s time to update it yet again — before hackers get to you with the latest Windows malware threat. Phemedrone is an open-source malware that targets web browsers and data from cryptocurrency wallets and messaging apps such as Telegram and Discord. And, this time, it’s getting to ordinary Windows users simply by getting around antivirus via Windows SmartScreen.

If that sounded like a lot of jibber-jabber, let’s break down what this means exactly, how it works and what else you need to know so you don’t end up a victim of this clever malware scam.

CLICK TO GET KURT’S FREE CYBERGUY NEWSLETTER WITH SECURITY ALERTS, QUICK VIDEO TIPS, TECH REVIEWS AND EASY HOW-TO’S TO MAKE YOU SMARTER

Before we detail this specific threat, let’s talk about Windows SmartScreen. Windows SmartScreen is a cloud-based, anti-phishing and anti-malware component found in many Microsoft products, and it determines whether or not a website is potentially malicious to protect users from downloading harmful viruses to their devices. It does this by analyzing webpages and identifying suspicious behavior that could be indicative of malicious sites, apps and files that could be potentially downloaded.

It has several tactics that it uses to make this determination. Still, essentially, if and when it does, it will notify the user via Windows SmartScreen, showing you a warning on the page that lets you know whatever you’re about to do could be dangerous.

MORE: WATCH OUT FOR THIS NEW MALICIOUS RANSOMWARE DISGUISED AS WINDOWS UPDATES 

Unfortunately, a vulnerability in Windows Defender known as CVE-2023-36025 was discovered and exploited by hackers back in November 2023, allowing bad actors to sneak past Windows Defender SmartScreen. It did this by hosting the malicious URL — which was shortened to be less suspicious — on a trusted cloud provider, like Discord or Filetransfer.io, though didn’t mention exactly how users were tricked into doing it. After all, this is a sophisticated hack.

Windows recognized these to be safe, while hackers were able to turn off the prompt that would otherwise enable Windows SmartScreen to pop up. As long as someone clicked the URL, Windows SmartScreen didn’t see it as harmful and, therefore, did not give a warning to users.

What would happen after this is that the victim would unknowingly download a control panel item (.cpl) file from a command-and-control, which allows hackers to essentially communicate with and control the device that they’ve compromised. Once they’re in, they launch a PowerShell loader, which grabs a PDF ZIP file labeled “Secure.pdf.” But, that’s no secure PDF…that’s a sneaky file disguising the Phemedrone malware. Then, boom. It’s on your device. And this is what would happen next.

MORE: BEST DESKTOP COMPUTERS FOR 2024 | BEST LAPTOPS FOR 2024

The type of malware in this particular threat is known as Phemedrone, and no, it’s not the name of medicine — it’s a new open-source malware that has the main goal of stealing data stored in web browsers, funds from your cryptocurrency wallets and other data, including password managers like LastPass. It can even steal cookies, autofill data and browser data, as well as any other files and folders on your computer that the hacker wants access to.

And that’s not all. This malware is also capable of:

MORE: WHY THAT FREE WINDOWS DOWNLOAD COULD COST YOU MORE THAN YOU BARGAINED FOR

Now, the reason you’re here — to protect yourself. New threats are coming out every day as hackers become more savvy and find more loopholes to exploit. But, in the case of this specific threat, Windows patched it up already and introduced the protection in a software update. This means that all you need to do is keep up with your software updates on Windows to protect yourself, which you’d be surprised how many people forget to do or ignore altogether. These software updates are important in keeping you safe, not just from this threat, but any others that may come your way.

Additionally, remember not to open or click on any links or files that you don’t know to be legit. Of course, hackers find sneaky ways to convince you that a link can be trusted even when it’s malicious. But stick to downloading files and apps from trusted browsers and app stores, and think twice before clicking on links in messaging apps.

An effective antivirus software is a must-have. It’s the best to help stop and alert you of any malware in your system, warn you against clicking on any malicious links in phishing emails and ultimately protect you from being hacked. The best way to protect yourself from having your data breached is to have antivirus protection installed on all your devices. Having good antivirus software allows you to be resilient against growing attacks like Phemedrone malware by actively running on your devices. Get my picks for the best 2024 antivirus protection winners for your Windows, Mac, Android & iOS devices.

Well, the biggest takeaway from this is that you can never be 100% safe online. Even the tools that are meant to protect you — like Windows SmartScreen — can be exploited from time to time. So, stay vigilant and have good antivirus software running on all your devices.

When was the last time you did a software update? How do you decide when it’s time to perform an update? Let us know by writing us at Cyberguy.com/Contact.

For more of my tech tips & security alerts, subscribe to my free CyberGuy Report Newsletter by heading to Cyberguy.com/Newsletter.

Ask Kurt a question or let us know what stories you’d like us to cover.

Answers to the most asked CyberGuy questions:

Copyright 2024 CyberGuy.com. All rights reserved.

Read More 

Science and Technology

[Fox News] 6 easy steps to save money by canceling your unused or unwanted subscriptions on your iPhone

Do you ever feel like you’re paying for things you don’t need or use? You might be surprised to find out how many subscriptions you have on your iPhone that are quietly draining your wallet every month. Although, it doesn’t have to be that way. I’ll show you how to easily find and cancel those unwanted subscriptions in just a few steps. Trust me, your bank account will thank you later.

CLICK TO GET KURT’S FREE CYBERGUY NEWSLETTER WITH SECURITY ALERTS, QUICK VIDEO TIPS, TECH REVIEWS AND EASY HOW-TO’S TO MAKE YOU SMARTER

If you’re like most iPhone users, you probably have a bunch of subscriptions that you don’t use or need anymore. These subscriptions can add up and cost you money every month without you even noticing. Here’s how to easily find and cancel your unwanted subscriptions in just a few simple steps.

The first thing you need to do is open the Settings app on your iPhone. You can find it on your home screen or by swiping down and typing “Settings” in the search bar.

Once you’re in Settings, tap your name at the top of the screen. This will take you to your Apple ID account page, where you can manage various aspects of your Apple account.

MORE: BEST ACCESSORIES FOR YOUR PHONE

On your Apple ID account page, scroll down and tap Subscriptions. This will show you a list of all the subscriptions you have on your iPhone, both active and expired.

Take a moment to review your subscriptions and see if there are any that you don’t use or need anymore. You might be surprised to find some subscriptions that you forgot about or signed up for by mistake.

For example, you might have a subscription to a music streaming service that you never listen to or a fitness app that you never use. Or maybe you signed up for a free trial of a game or a magazine and forgot to cancel it before it automatically renewed.

MORE: 5 BEST PORTABLE PHONE CHARGERS

If you find a subscription that you want to cancel, tap on it and then tap Cancel Subscription. You’ll be asked to confirm your decision, and then your subscription will be canceled.

Note that canceling a subscription will stop it from renewing at the end of the current billing cycle. You’ll still have access to the subscription until then, unless you request a refund from the app developer.

If you want to keep track of your subscription renewals and avoid any unwanted charges in the future, you can turn on renewal receipts. This will send you an email every time one of your subscriptions automatically renews so that you can stay on top of your spending.

To turn on renewal receipts, scroll down to the bottom of the Subscriptions page and tap Renewal Receipts. Make sure the toggle is green, and then you’re all set.

MORE: HOW TO FIND ANY RECIPE WITH JUST A PHONE ON IPHONE

If you don’t want to receive a new email each time your subscription renews, you can always view your receipts by following the following steps:

Now, you’ve just learned how to find and cancel your subscriptions on your iPhone in a few easy steps. By doing this, you can save money and avoid paying for things you don’t use or need.

How much money did you save by canceling your unwanted subscriptions on your iPhone? Let us know by writing us at Cyberguy.com/Contact.

For more of my tech tips & security alerts, subscribe to my free CyberGuy Report Newsletter by heading to Cyberguy.com/Newsletter.

Ask Kurt a question or let us know what stories you’d like us to cover.

Answers to the most asked CyberGuy questions:

Copyright 2024 CyberGuy.com. All rights reserved.

Read More