May 31, 2025Ravie LakshmananMalware / Cyber Crime A multinational law enforcement operation has resulted in the takedown of an online cybercrime syndicate that offered services to threat actors to ensure that their malicious software stayed undetected from security software. To that effect, the U.S. Department of Justice (DoJ) said it seized four domains and their associated server facilitated the crypting service on May 27, 2025, in partnership with Dutch and Finnish authorities. These include AvCheck[.]net, Cryptor[.]biz, and Crypt[.]guru, all of which now display a seizure notice. Other countries that participated in the effort include France, Germany, Denmark, Portugal, and Ukraine. "Crypting is the process of using software to make malware difficult for antivirus programs to detect," the DoJ said. "The seized domains offered services to cybercriminals, including counter-antivirus (CAV) tools. When used together, CAV and crypting services allow criminals to obfuscate malware, making it undetectable and enabling unauthorized access to computer systems." The DoJ said authorities made undercover purchases to analyze the services and confirmed that they were being used for cybercrime. In a coordinated announcement, Dutch officials characterized AvCheck as one of the largest CAV services used by bad actors around the world. According to snapshots captured by the Internet Archive, AvCheck[.]net billed itself as a "high-speed antivirus scantime checker," offering the ability for registered users to scan their files against 26 antivirus engines, as well as domains and IP addresses with 22 antivirus engines and blocklists. The domain seizures were conducted as part of Operation Endgame, an ongoing global effort launched in 2024 to dismantle cybercrime. It marks the fourth major action in recent weeks after the disruption of Lumma Stealer, DanaBot, and hundreds of domains and servers used by various malware families to deliver ransomware. "Cybercriminals don't just create malware; they perfect it for maximum destruction," said FBI Houston Special Agent in Charge Douglas Williams. "By leveraging counter-antivirus services, malicious actors refine their weapons against the world's toughest security systems to better slip past firewalls, evade forensic analysis, and wreak havoc across victims' systems." The development comes as eSentire detailed PureCrypter, a malware-as-a-service (MaaS) solution that's being used to distribute information stealers like Lumma and Rhadamanthys using the ClickFix initial access vector. Marketed on Hackforums[.]net by a threat actor named PureCoder for $159 for three months, $399 for one year, or $799 for lifetime access, the crypter is distributed using an automated Telegram channel, @ThePureBot, which also serves as a marketplace for other offerings, including PureRAT and PureLogs. Like other purveyors of such tools, PureCoder requires users to acknowledge a Terms of Service (ToS) agreement that claims the software is meant only for educational purposes and that any violations would result in immediate revocation of their access and serial key. The malware also incorporates the ability to patch the NtManageHotPatch API in memory on Windows machines running 24H2 or newer to re-enable process hollowing-based code injection. The findings demonstrate how threat actors quickly adapt and devise ways to defeat new security mechanisms. "The malware employs multiple evasion techniques including AMSI bypass, DLL unhooking, anti-VM detection, anti-debugging measures, and recently added capabilities to bypass Windows 11 24H2 security features through NtManageHotPatch API patching," the Canadian cybersecurity company said. "The developers use deceptive marketing tactics by promoting 'Fully UnDetected' (FUD) status based on AvCheck[.]net results, while VirusTotal shows detection by multiple AV/EDR solutions, revealing significant discrepancies in detection rates." Found this article interesting? Follow us on Twitter  and LinkedIn to read more exclusive content we post. SHARE    

Posted on : May 30, 2025 By Tech World Times Security Testing  Rate this post Technology is always changing. New tools and platforms appear every year. Some stay hidden, only known to a few. One such tool is TheJavaSea Me Leaks AIO TLP. It’s not for everyone. But many users are curious about it. This article offers a simple review. We also explore the 2025 update. You’ll understand what it is. You’ll learn what’s new. And if it’s something you should try. What Is TheJavaSea Me Leaks AIO TLP? It is an all-in-one leak platform. “AIO” stands for “All-In-One.” It gathers various tools in one place. It is mostly used by digital explorers. These people look for leaked data, software tools, and more. This platform isn’t for regular web users. It’s more for advanced users. Some use it for cybersecurity tests. Others use it for research or investigation. Some may use it for the wrong reasons. Always use tools like this responsibly. Why Is It Gaining Attention in 2025? In 2025, it received a major update. That’s why people are talking about it again. It now has new tools and better features. It is faster and more stable. Many users say the update fixed past bugs. Others say it added new data sources. The new version looks cleaner. The user interface is more modern now. It also supports more file types. That means you can work with many formats easily. Navigation is simpler than before. You don’t need to be a tech expert to use it. New Features in the 2025 Update Let’s go over the key improvements in 2025. 1. Faster Search Engine The search is now quicker. You get results in seconds. It saves users a lot of time. 2. New Leak Categories There are more categories now. Examples include gaming, e-learning, and private communities. Each one is well-organized. 3. Better Data Sorting You can now sort leaks by date, type, or size. It makes things easier to find. 4. Improved Security Layer The developers added better encryption. That means user data is more protected. 5. Multi-Device Access You can use it on mobile, tablet, or PC. It works smoothly on all devices. 6. User Chat and Forums Now users can talk with each other. There’s a private chat area and community boards. User Interface (UI) Review The interface is much cleaner now. The layout is simple. Everything is easy to locate. You have a search bar at the top. Tabs are clearly labeled. The menu includes links to all sections. The dark theme is now the default. This reduces eye strain. Button clicks are responsive. Loading screens are rare. All these small changes improve user experience. Performance and Speed Speed is very important for platforms like this. No one likes delays. The 2025 version loads faster. File previews also open quickly. Even on low-speed internet, it performs well. No crashing issues were reported in recent tests. Many users say the stability is the best so far. That’s a good sign for serious users. Data and Tools Included This platform offers many types of leaks. These include: Login credentials Premium content Course material Software keys Private files Research papers Each file is usually tagged and verified. The new version has added more filtering options. That means you can avoid fake or spam data. There are also mini tools. These include: Password generators Email checkers Proxy tools File scanners These are useful for testing and verification. They are all found in one place. Community Feedback Users seem happy with the update. Many left good reviews on forums. They say the site is more stable now. Others like the extra data options. Some long-time users say it’s the best version yet. However, some new users still find it complex. The layout is better, but the content is still advanced. If you’re new, take time to explore slowly. Pros and Cons Here are the pros and cons to help you decide. Pros: Fast and stable Clean layout Many leak types Helpful tools included Good community support Cons: Not beginner-friendly Some links may break Can be misused if not careful Is It Legal to Use? This is a big question. The platform shares leaks. Many of these may be copyrighted. Or they may include private data. So, using this tool may break laws in some areas. Always check your country’s laws. Don’t download or use content you don’t have rights to. Even for research, be careful. Ethical use is always the best path. Who Should Use It? It’s not for everyone. But it can be helpful for: Cybersecurity students Ethical hackers Content researchers Software testers If you belong to these groups, it may be worth exploring. Always use it with care. How to Stay Safe While Using It Here are tips for safe use: Use a VPN Never log in with your real email Avoid downloading unknown files Don’t share your private data Use antivirus protection These steps will protect your device and privacy. Conclusion Not all tools are made for everyone. Some require special care. Some demand technical understanding. TheJavaSea Me Leaks AIO TLP is one such platform. It offers power, but also risks. With the 2025 update, it’s stronger than ever. It’s faster, cleaner, and more flexible. But use it wisely. Stay safe. And make sure your actions follow the law. When used right, it can be a valuable tool. Tech World TimesTech World Times (TWT), a global collective focusing on the latest tech news and trends in blockchain, Fintech, Development & Testing, AI and Startups. If you are looking for the guest post then contact at techworldtimes@gmail.com

close New tech helps travelers save on smartphone charges Artificial intelligence is now being used to personalize eSIMS, potentially saving hundreds of dollars for travelers overseas. Your smartphone works hard, but it doesn't always stay in top shape on its own. Over time, storage fills up, apps collect background data and privacy settings fall behind. You might notice slower performance, random glitches or just a general sense that things aren't running as smoothly as they used to. The good news is that a quick digital and physical cleanup can help your device run like new. These simple steps will help you free up space, improve speed and keep your personal data better protected. Woman looking at apps on smartphone (Kurt "CyberGuy" Knutsson)Digital cleanup tips1. Clear out apps and files you forgot existedIf your phone is low on storage or feeling sluggish, start by clearing out apps and files you no longer use. This is one of the fastest ways to improve speed and battery life.For iPhone usersOffload unused apps: Go to Settings > Apps > App Store > Turn on Offload Unused Apps.Review app storage usage: Go to Settings > General > iPhone Storage > Scroll down and select an offload or delete. (Note: Offloading an app will preserve the app’s data and documents, allowing you to reinstall the app later and pick up where you left off. While deleting an app will remove both the app and all its data from your device permanently, unless that data is backed up elsewhere.)Delete large message attachments: Go to Messages > Open a conversation > Tap contact name > Info > See All under Photos > Tap Select > Tap photos you want to delete > Tap Delete on the bottom right > Confirm by tapping Delete Attachment.Enable iCloud photos: Go to Settings > [Your Name] > iCloud > Photos > Turn on Sync this iPhone and Optimize iPhone Storage to save space on your device by storing full-resolution photos in iCloud and smaller versions locally.For Android usersSettings may vary depending on your Android phone’s manufacturer. Delete unused apps: Go to Settings > Apps > [App Name] > Uninstall.Clean out downloads: Open the Files app > Downloads > Select files > Tap Delete.Use Files by Google: Open the Files by Google app > Tap Clean > Use options like Delete downloaded files or Delete duplicate files to free up space. Person viewing storage space on their smartphone (Kurt "CyberGuy" Knutsson)5 DIGITAL CLEANUP HACKS YOU DIDN’T KNOW YOU NEEDED2. Disable background app activity to save power and speed things upMany apps continue running in the background even when you're not using them, draining battery and slowing down your phone. Limiting or disabling background activity can noticeably boost performance and help your device last longer between charges.For iPhone usersLimit background activity:Go to Settings > General > Background App Refresh > Choose Off or Wi-Fi only > Or toggle off individual apps that don't need to refresh in the background.For Android usersSettings may vary depending on your Android phone’s manufacturer.Restrict background activity:Go to Settings > Apps > Select the app > Tap Battery > Choose Restricted or Optimize to limit background usage.Or go to Settings > Battery > Battery usage > Tap on apps using high power > Adjust settings to restrict background activity.Get a free scan to find out if your personal information is already out on the web 3. Organize and remove unnecessary filesDigital clutter adds up quickly. Screenshots, old PDFs, duplicate photos and downloads that were only meant to be temporary. Regular file maintenance helps you stay organized and keep your phone running smoothly.For iPhone usersFind duplicate photos: Go to Photos > Scroll to Utilities > Duplicates (if applicable) > Tap Merge to combine duplicates > Confirm your decision by clicking Merge # Exact Copies.Sort screenshots: Go to Photos > Scroll to Media Types > Screenshots > Tap Select in the upper right > Tap the photo/photos you want to delete and a blue check mark will appear in the bottom right of the image > Then tap the trashcan in the bottom right of the screen > Confirm your decision by clicking Delete or Delete # Photos.Delete old downloads: Open the Files app > Browse > Downloads > Tap the circle with the three horizontal dots in the upper right > Tap Select > Click the files you'd like to delete and a blue circle with a check mark will appear > Tap the trash can icon in the bottom right of the screen.For Android usersSettings may vary depending on your Android phone’s manufacturer.Find duplicate photos: Open Files by Google > Tap Clean > Under Duplicate files, select files to delete.Sort screenshots: Open Photos > Albums or Collections > Screenshots > Tap and hold to select > Delete or the trashcan icon > Click Move to trash.Delete old downloads: Open the Files app > Downloads > Select files by tapping and holding > Tap Delete or the trash can icon.For email cleanupBulk delete emails in Gmail: In the search bar, type older_than:6m > Select all > Delete.Set email rules in Outlook: Go to File > Manage Rules & Alerts > New Rule > Choose criteria like sender, age or subject > Set action to archive or delete.Find old emails in Yahoo: Use the search bar to type before:2025/01/01 messages by clicking the square box next to the message > Delete or click the trashcan icon.Physical cleaning tipsPhones collect bacteria from nearly every surface you touch. From gym equipment to bathroom counters, your phone needs regular cleaning to stay safe and functional.Clean the exteriorUse a dry microfiber cloth to wipe the screen, case and back.For tougher smudges, slightly dampen the cloth with 70% isopropyl alcohol.Never spray liquid directly on the screen or into ports.Avoid harsh chemicals like bleach, ammonia or glass cleaner.Do not use paper towels or abrasive materials that can scratch the screen.Clean ports and speakersUse a soft-bristled brush or wooden toothpick to remove lint and debris from charging ports and speaker grills.Avoid using metal objects or compressed air directly into the port.Clean your caseFor plastic or silicone: Wash with warm soapy water, rinse and air dry.For leather or fabric: Use a surface-appropriate cleaning solution and follow the manufacturer’s care instructions.Before cleaning, always power off your phone and unplug any accessories.GET FOX BUSINESS ON THE GO BY CLICKING HERE Man cleaning smartphone with microfiber cloth (Kurt "CyberGuy" Knutsson)Privacy and security sweepDigital cleaning also means reviewing your privacy settings. Make sure your apps are not accessing more than they need and keep your sensitive data secure.For iPhoneHide private photos: Go to Photos > Select image > Click the three horizontal dots in the circle in the upper right of the screen > Hide > Confirm by clicking Hide Photo.Control lock screen access: Go to Settings > Face ID & Passcode > Adjust Allow Access When Locked settings.Use iCloud Keychain to manage and autofill secure passwords: Go to Settings > [your name] > iCloud > Passwords. Tap Sync This iPhone to enable iCloud Keychain.For AndroidSettings may vary depending on your Android phone’s manufacturer.Review app permissions: Go to Settings > Privacy > Permission Manager > Choose a permission type > Review and adjust access.Enable Find Hub: Go to Settings > Google > All services > Personal & device safety > Find Hub > Turn on Allow device to be located.Set a secure screen lock: Go to Settings > Security > Screen Lock > Choose a PIN, password or pattern.Back up your dataData loss can happen without warning. Whether it is due to damage, theft or an unexpected software issue, having a recent backup can save your photos, contacts and important files.For iPhoneBack up to iCloud: Go to Settings > [Your Name] > iCloud > iCloud Backup > Turn on.Back up using a computer: Connect to Finder (on Mac) or iTunes (on PC) and select Back Up Now.For AndroidSettings may vary depending on your Android phone’s manufacturer.Back up to Google: Go to Settings > Google > Backup > Turn on Backup by Google One > Confirm your backups in the Google One app under Storage > Device Backup.Use smart tools to automate cleanupInstead of constantly managing your phone manually, let trusted tools do the heavy lifting. A top-tier antivirus app doesn’t just protect against malware; it often includes powerful performance boosters designed to keep your device running smoothly. Look for apps that offer:Junk file and cache cleanupApp uninstaller for unused programsDuplicate file finderBrowser cleanup toolsStartup manager to improve device boot timeReal-time protection against malware, phishing and unsafe linksThese features help keep your device fast, secure and clutter-free without constant manual maintenance. Many top-rated antivirus apps offer a combination of security and performance optimization tools to simplify device management and protection. Get my picks for the best 2025 antivirus protection winners for your Windows, Mac, Android and iOS devices.Kurt’s key takeawayTaking a little time to clean up your phone can really pay off. Whether you're freeing up space, boosting speed or tightening your privacy, these small steps help your device work better and keep your information safer. Plus, a quick physical clean keeps your phone looking and feeling fresh.What are some of your favorite tips or habits for keeping your phone clean, organized and secure? Let us know by writing us atCyberguy.com/Contact.CLICK HERE TO GET THE FOX NEWS APPFor more of my tech tips and security alerts, subscribe to my free CyberGuy Report Newsletter by heading to Cyberguy.com/Newsletter.Ask Kurt a question or let us know what stories you'd like us to cover.Follow Kurt on his social channels:Answers to the most-asked CyberGuy questions:New from Kurt:Copyright 2025 CyberGuy.com. All rights reserved. Kurt "CyberGuy" Knutsson is an award-winning tech journalist who has a deep love of technology, gear and gadgets that make life better with his contributions for Fox News & FOX Business beginning mornings on "FOX & Friends." Got a tech question? Get Kurt’s free CyberGuy Newsletter, share your voice, a story idea or comment at CyberGuy.com.

Published May 29, 2025 10:00am EDT close Windows Defender Security Center scam: How to protect your computer from fake pop-ups Tech expert Kurt "CyberGuy" Knutsson says a tech support scam used a fake Windows Defender pop-up, tricking the victim to call and download software. All modern Windows PCs come with Microsoft Defender built in. For the unaware, this tool is Windows’ native antivirus. Over time, it has matured into a reliable security tool capable of blocking a wide range of threats. However, a tool called Defendnot can shut down Microsoft Defender completely, without exploiting a bug or using malware. It simply convinces Windows that another antivirus is already running.The implications are serious. This tool does not break into the system or use advanced code injection. It uses Windows features the way they were designed to be used. And that makes the problem harder to detect and harder to fix. Windows software on a PC (Kurt "CyberGuy" Knutsson)The tool works by pretending to be an antivirusWindows is built to avoid running multiple antivirus products at once. When a third-party antivirus registers itself, Windows disables Microsoft Defender to prevent conflicts. Defendnot exploits this system using an undocumented API that security software uses to communicate with the Windows Security Center.The tool registers a fake antivirus that appears legitimate to the system. It uses a dummy DLL and injects it into Task Manager, a trusted Windows process. By operating inside this signed process, Defendnot avoids signature checks and permission blocks. Once the fake antivirus is registered, Windows disables Microsoft Defender without warning or confirmation.WINDOWS 10 SECURITY FLAWS LEAVE MILLIONS VULNERABLENo security alert is shown to the user. No visible changes are made to indicate that the system is unprotected. Unless someone checks manually, the machine remains open to attacks with no real-time protection running.The tool also includes options to set a custom antivirus name, enable logging and configure automatic startup. It achieves persistence by creating a scheduled task that runs whenever the user logs in. Windows software on a laptop (Kurt "CyberGuy" Knutsson)From GitHub takedown to a fresh buildDefendnot is based on an earlier project called No-Defender. That project used code from an actual antivirus product to fake registration. It gained attention quickly and was removed after a copyright complaint from the vendor whose code had been reused. The developer took the project down and walked away from it.With Defendnot, the creator rebuilt the core features using original code. This version avoids copyright issues and uses a new method to achieve the same effect. It does not rely on another antivirus or third-party binaries. It was written from scratch to demonstrate how simple it is to manipulate Windows security from inside the system.Microsoft Defender currently flags the tool as a threat. It detects and quarantines it under the name Win32/Sabsik.FL.!ml. However, the fact that it works at all points to a weakness in how Windows handles antivirus registration and trust.WHAT IS ARTIFICIAL INTELLIGENCE (AI)? Windows laptop showing the home screen (Kurt "CyberGuy" Knutsson)6 ways to protect yourself from malicious programsWhile Defendnot is a research project, there’s a chance that similar tools are already out there and could be used to compromise your PC. Here are a few tips to help you stay safe:1. Use strong antivirus software: Even with regular updates, Windows systems can be left exposed by tools like Defendnot that silently disable built-in defenses. A strong third-party antivirus with real-time protection and frequent updates provides essential backup security. Look for solutions with real-time protection and frequent updates to tackle emerging threats. Get my picks for the best 2025 antivirus protection winners for your Windows, Mac, Android and iOS devices.2. Limit exposure: Many exploits rely on user interaction, such as clicking a shady link, downloading a compromised file or mounting an untrusted virtual disk. Stick to reputable websites, avoid opening unsolicited email attachments and use a browser with built-in security features (like Microsoft Edge or Chrome with Safe Browsing enabled).3. Avoid running unexpected commands: Never paste or run commands (like PowerShell scripts) you don’t understand or that were copied from random websites. Attackers often trick users into unknowingly running malware this way.4. Keep your software updated: Regularly update your operating system, browsers and all software applications. Updates often include patches for security vulnerabilities that malware can exploit.5. Use two-factor authentication (2FA): Enable 2FA on all your accounts. This adds an extra layer of security by requiring a second form of verification, making it harder for attackers to gain access even if they have your password.6. Invest in personal data removal services: Even with strong device security, your personal information may still be exposed online through data brokers and people-finder sites. These services collect and publish details like your name, address and phone number, making you an easier target for identity theft or phishing. Automated data removal services track down these sites and submit removal requests on your behalf, helping to reduce your digital footprint and increase your online anonymity. While they can't erase every trace of your information, they make it significantly harder for attackers to find and exploit your personal data, which saves you time and reduces unwanted spam in the process.While no service promises to remove all your data from the internet, having a removal service is great if you want to constantly monitor and automate the process of removing your information from hundreds of sites continuously over a longer period of time. Check out my top picks for data removal services here.Get a free scan to find out if your personal information is already out on the web.Kurt’s key takeawayDefendnot points to a bigger issue with how Windows handles security. It takes a feature meant to prevent software conflicts and turns it into a way to completely disable protection. The system assumes any registered antivirus is legitimate, so if attackers can fake that, they get in without much resistance.We often think of security as blocking the bad and trusting the good. But this case shows what happens when that trust is misplaced. Defendnot doesn’t sneak past Windows defenses. It walks right in using valid credentials. The solution isn’t just more patches or stronger malware signatures. What we need is a smarter way for systems to tell what is actually safe.CLICK HERE TO GET THE FOX NEWS APPDo you think companies like Microsoft need to rethink how Windows handles antivirus registration and trust, given that tools like Defendnot can so easily disable built-in protections without using malware or exploiting a bug? Let us know by writing us at Cyberguy.com/Contact.For more of my tech tips and security alerts, subscribe to my free CyberGuy Report Newsletter by heading to Cyberguy.com/Newsletter.Ask Kurt a question or let us know what stories you'd like us to cover.Follow Kurt on his social channels:Answers to the most-asked CyberGuy questions:New from Kurt:Copyright 2025 CyberGuy.com. All rights reserved. Kurt "CyberGuy" Knutsson is an award-winning tech journalist who has a deep love of technology, gear and gadgets that make life better with his contributions for Fox News & FOX Business beginning mornings on "FOX & Friends." Got a tech question? Get Kurt’s free CyberGuy Newsletter, share your voice, a story idea or comment at CyberGuy.com.

Macworld At a GlanceExpert's Rating Pros Good speed, tools, and customization settings Stopped every piece of malware 30-day trial Cons Tricky installation Web Protection feature does nothing to warn or prevent access to problem websites A disk access error required reinstallation (twice!) Our Verdict When the application works, it’s impressive. There was almost no malware I could get past it, the level of customization is impressive, and while I wish its Web Protection feature added warnings for clear scams and phishing attempts, Trend Micro Antivirus meets the needs of the Consumer market it’s targeted towards quite well. Price When Reviewed This value will show the geolocated pricing text for product undefined Best Pricing Today Best Prices Today: Trend Micro Antivirus for Mac Retailer Price Trend Micro 19,95 € View Deal Price comparison from over 24,000 stores worldwide Product Price Price comparison from Backmarket There’s a certain value in an application not trying to do everything under the sun, but honing in on a set of tasks and performing them well. And while Trend Micro Antivirus for the Mac hasn’t included a ton of revolutionary new features since the last time we reviewed it (in 2023), and while you’re less likely to hear about the program given the company’s focus on the business environment and lack of a marketing blitz towards consumer and home users, there’s something good to be had here. Trend Micro Antivirus for Mac requires macOS 10.13 (High Sierra) to download, currently retails for $29.95/£19.95 a year for one device for the first year (discounted from $39.99/£49.95 a year), and is also readily available as a 30-day trial with no credit or debit card needing to be sent along to Trend Micro. We have tested all the best Mac antivirus software options in our round-up of the Best antivirus software for Mac. Simply download the software, install it, and follow the prompts to add the iCore network extension, add the Safari and other web browser extensions, decide if you want to activate the Folder Shield feature, perform the initial virus definition updates, and allow the software to reboot. From there, Trend Micro will ask for permission to initiate full disk access to your Mac’s hard drive. The user interface is identical to its previous versions, with the home screen focusing on its Overview, Web, Scans, Folder Shield, and Logs modules. Trend Micro Antivirus continues to focus on its bread and butter with what is honestly excellent antiviral protection. Foundry Upon hurling the Objective See Mac Malware collection at it, there was almost nothing that got through, the application recognizing the malware and deleting it, save for a fake Adobe Flash Player extension that installed and was later removed by the macOS operating system. This, combined with a handy scheduling feature that allows for daily, weekly, or monthly setup and execution, allows for the application to run on its own without needing to be babysat.   There’s an interesting level of customization at work here, as Folder Shield offers boosted protection to assorted user folders (such as Documents, Music, Pictures, Movies, Dropbox, Mobile Documents, etc.), and you can create a Trusted Program list. It’s not crucial, but it’s fairly unique, and the application also scans inserted USB drives by default. Foundry The Web Protection module offers Privacy Scanner, Web Threat Protection, and Website Filter elements, which can block controversial content, such as pornography, etc., and users can also add trusted websites and blocked websites.  If there’s one thing that impressed me, it was the quick access to the logs, which cover scan results, unsafe websites found, websites filtered, updates received, folder shield, and dangerous notifications found. While this version of Trend Micro Antivirus isn’t designed for the sysadmin market, there’s nothing more useful than system logs to see what’s going on, and the fact that these logs are pre-sorted comes in handy.  For the final element of the Overview window, and as expected, the user interface hooks into ads for the company’s other wares from its home screen (“Privacy Tools” goes to Trend Micro VPN and “Utility Tools” hooks into its Cleaner One Pro, Unzip One, and AdBlock One utilities) which isn’t surprising, and is at least tucked out of the way as opposed to the application firing this into your eyeballs every two nanoseconds you use it.  Foundry Trend Micro has carved out something good here, even if there are a few wrinkles to iron out. The installation was a little trickier than expected, and you have to double-check the windows and options to make sure you’re enabling the right extensions, as opposed to an installer that does most of this for you. This gets a little bit tricky, but isn’t a deal breaker by any stretch of the imagination. Perhaps the most infuriating element to consider was the fact that the Web Protection feature, although well-hyped, does just about nothing to warn or protect you from websites associated with your spam folder, and I’m still able to go to sites offering me a free $1,000 prepaid Visa card, supposed free Bitcoin payouts, online casino gambling, etc. Finally, and I’m not sure exactly what led to this, but Trend Micro Antivirus stated twice that full disk access hadn’t been granted during testing despite the settings being correct, and needed to be uninstalled and reinstalled twice. This may be a bug between Trend Micro Antivirus and macOS Sequoia 15.5, but it would behoove Apple and Trend Micro to swap notes, brew a few pots of coffee, and see exactly what’s happening that could lead to this.  Should you buy Trend Micro Antivirus? I’m not sure what led to the error and the need for reinstallation, but when the application works, it’s impressive. There was almost no malware I could get past it, the level of customization is impressive, and while I wish its Web Protection feature added warnings for clear scams and phishing attempts, Trend Micro Antivirus meets the needs of the consumer market it’s targeted towards quite well, there’s ready access to Trend Micro’s help and feedback boards from the Overview window, and the options for the company’s additional tools are present but not overwhelming in the sense that a marketing department had gone out of control.

Published May 27, 2025 10:00am EDT close Deepfake technology 'is getting so easy now': Cybersecurity expert Cybersecurity expert Morgan Wright breaks down the dangers of deepfake video technology on 'Unfiltered.' Imagine your phone rings and the voice on the other end sounds just like your boss, a close friend, or even a government official. They urgently ask for sensitive information, except it's not really them. It's a deepfake, powered by AI, and you're the target of a sophisticated scam. These kinds of attacks are happening right now, and they're getting more convincing every day.That's the warning sounded by the 2025 AI Security Report, unveiled at the RSA Conference (RSAC), one of the world's biggest gatherings for cybersecurity experts, companies, and law enforcement. The report details how criminals are harnessing artificial intelligence to impersonate people, automate scams, and attack security systems on a massive scale.From hijacked AI accounts and manipulated models to live video scams and data poisoning, the report paints a picture of a rapidly evolving threat landscape, one that's touching more lives than ever before. Illustration of cybersecurity risks. (Kurt "CyberGuy" Knutsson)AI tools are leaking sensitive dataOne of the biggest risks of using AI tools is what users accidentally share with them. A recent analysis by cybersecurity firm Check Point found that 1 in every 80 AI prompts includes high-risk data, and about 1 in 13 contains sensitive information that could expose users or organizations to security or compliance risks.This data can include passwords, internal business plans, client information, or proprietary code. When shared with AI tools that are not secured, this information can be logged, intercepted, or even leaked later.Deepfake scams are now real-time and multilingualAI-powered impersonation is getting more advanced every month. Criminals can now fake voices and faces convincingly in real time. In early 2024, a British engineering firm lost 20 million pounds after scammers used live deepfake video to impersonate company executives during a Zoom call. The attackers looked and sounded like trusted leaders and convinced an employee to transfer funds.Real-time video manipulation tools are now being sold on criminal forums. These tools can swap faces and mimic speech during video calls in multiple languages, making it easier for attackers to run scams across borders. Illustration of a person video conferencing on their laptop. (Kurt "CyberGuy" Knutsson)AI is running phishing and scam operations at scaleSocial engineering has always been a part of cybercrime. Now, AI is automating it. Attackers no longer need to speak a victim’s language, stay online constantly, or manually write convincing messages.Tools like GoMailPro use ChatGPT to create phishing and spam emails with perfect grammar and native-sounding tone. These messages are far more convincing than the sloppy scams of the past. GoMailPro can generate thousands of unique emails, each slightly different in language and urgency, which helps them slip past spam filters. It is actively marketed on underground forums for around $500 per month, making it widely accessible to bad actors.Another tool, the X137 Telegram Console, leverages Gemini AI to monitor and respond to chat messages automatically. It can impersonate customer support agents or known contacts, carrying out real-time conversations with multiple targets at once. The replies are uncensored, fast, and customized based on the victim’s responses, giving the illusion of a human behind the screen.AI is also powering large-scale sextortion scams. These are emails that falsely claim to have compromising videos or photos and demand payment to prevent them from being shared. Instead of using the same message repeatedly, scammers now rely on AI to rewrite the threat in dozens of ways. For example, a basic line like "Time is running out" might be reworded as "The hourglass is nearly empty for you," making the message feel more personal and urgent while also avoiding detection.By removing the need for language fluency and manual effort, these AI tools allow attackers to scale their phishing operations dramatically. Even inexperienced scammers can now run large, personalized campaigns with almost no effort. Stolen AI accounts are sold on the dark webWith AI tools becoming more popular, criminals are now targeting the accounts that use them. Hackers are stealing ChatGPT logins, OpenAI API keys, and other platform credentials to bypass usage limits and hide their identity. These accounts are often stolen through malware, phishing, or credential stuffing attacks. The stolen credentials are then sold in bulk on Telegram channels and underground forums. Some attackers are even using tools that can bypass multi-factor authentication and session-based security protections. These stolen accounts allow criminals to access powerful AI tools and use them for phishing, malware generation, and scam automation. Illustration of a person signing into their laptop. (Kurt "CyberGuy" Knutsson)Jailbreaking AI is now a common tacticCriminals are finding ways to bypass the safety rules built into AI models. On the dark web, attackers share techniques for jailbreaking AI so it will respond to requests that would normally be blocked. Common methods include:Telling the AI to pretend it is a fictional character that has no rules or limitationsPhrasing dangerous questions as academic or research-related scenariosAsking for technical instructions using less obvious wording so the request doesn’t get flaggedSome AI models can even be tricked into jailbreaking themselves. Attackers prompt the model to create input that causes it to override its own restrictions. This shows how AI systems can be manipulated in unexpected and dangerous ways.AI-generated malware is entering the mainstreamAI is now being used to build malware, phishing kits, ransomware scripts, and more. Recently, a group called FunkSac was identified as the leading ransomware gang using AI. Its leader admitted that at least 20% of their attacks are powered by AI. FunkSec has also used AI to help launch attacks that flood websites or services with fake traffic, making them crash or go offline. These are known as denial-of-service attacks. The group even created its own AI-powered chatbot to promote its activities and communicate with victims on its public website..Some cybercriminals are even using AI to help with marketing and data analysis after an attack. One tool called Rhadamanthys Stealer 0.7 claimed to use AI for "text recognition" to sound more advanced, but researchers later found it was using older technology instead. This shows how attackers use AI buzzwords to make their tools seem more advanced or trustworthy to buyers.Other tools are more advanced. One example is DarkGPT, a chatbot built specifically to sort through huge databases of stolen information. After a successful attack, scammers often end up with logs full of usernames, passwords, and other private details. Instead of sifting through this data manually, they use AI to quickly find valuable accounts they can break into, sell, or use for more targeted attacks like ransomware.Get a free scan to find out if your personal information is already out on the web Poisoned AI models are spreading misinformationSometimes, attackers do not need to hack an AI system. Instead, they trick it by feeding it false or misleading information. This tactic is called AI poisoning, and it can cause the AI to give biased, harmful, or completely inaccurate answers. There are two main ways this happens:Training poisoning: Attackers sneak false or harmful data into the model during developmentRetrieval poisoning: Misleading content online gets planted, which the AI later picks up when generating answersIn 2024, attackers uploaded 100 tampered AI models to the open-source platform Hugging Face. These poisoned models looked like helpful tools, but when people used them, they could spread false information or output malicious code.A large-scale example came from a Russian propaganda group called Pravda, which published more than 3.6 million fake articles online. These articles were designed to trick AI chatbots into repeating their messages. In tests, researchers found that major AI systems echoed these false claims about 33% of the time. Illustration of a hacker at work (Kurt "CyberGuy" Knutsson)How to protect yourself from AI-driven cyber threatsAI-powered cybercrime blends realism, speed, and scale. These scams are not just harder to detect. They are also easier to launch. Here’s how to stay protected:1) Avoid entering sensitive data into public AI tools: Never share passwords, personal details, or confidential business information in any AI chat, even if it seems private. These inputs can sometimes be logged or misused.2) Use strong antivirus software: AI-generated phishing emails and malware can slip past outdated security tools. The best way to safeguard yourself from malicious links that install malware, potentially accessing your private information, is to have strong antivirus software installed on all your devices. This protection can also alert you to phishing emails and ransomware scams, keeping your personal information and digital assets safe. Get my picks for the best 2025 antivirus protection winners for your Windows, Mac, Android & iOS devices.3) Turn on two-factor authentication (2FA): 2FA adds an extra layer of protection to your accounts, including AI platforms. It makes it much harder for attackers to break in using stolen passwords.4) Be extra cautious with unexpected video calls or voice messages: If something feels off, even if the person seems familiar, verify before taking action. Deepfake audio and video can sound and look very real.5) Use a personal data removal service: With AI-powered scams and deepfake attacks on the rise, criminals are increasingly relying on publicly available personal information to craft convincing impersonations or target victims with personalized phishing. By using a reputable personal data removal service, you can reduce your digital footprint on data broker sites and public databases. This makes it much harder for scammers to gather the details they need to convincingly mimic your identity or launch targeted AI-driven attacks.While no service can guarantee the complete removal of your data from the internet, a data removal service is really a smart choice.  They aren’t cheap - and neither is your privacy.  These services do all the work for you by actively monitoring and systematically erasing your personal information from hundreds of websites.  It’s what gives me peace of mind and has proven to be the most effective way to erase your personal data from the internet.  By limiting the information available, you reduce the risk of scammers cross-referencing data from breaches with information they might find on the dark web, making it harder for them to target you. Check out my top picks for data removal services here. 6) Consider identity theft protection: If your data is leaked through a scam, early detection is key. Identity protection services can monitor your information and alert you to suspicious activity. Identity Theft companies can monitor personal information like your Social Security Number (SSN), phone number, and email address, and alert you if it is being sold on the dark web or being used to open an account.  They can also assist you in freezing your bank and credit card accounts to prevent further unauthorized use by criminals. See my tips and best picks on how to protect yourself from identity theft.7) Regularly monitor your financial accounts: AI-generated phishing, malware, and account takeover attacks are now more sophisticated and widespread than ever, as highlighted in the 2025 AI Security Report. By frequently reviewing your bank and credit card statements for suspicious activity, you can catch unauthorized transactions early, often before major damage is done. Quick detection is crucial, especially since stolen credentials and financial information are now being traded and exploited at scale by cybercriminals using AI.8) Use a secure password manager: Stolen AI accounts and credential stuffing attacks are a growing threat, with hackers using automated tools to break into accounts and sell access on the dark web. A secure password manager helps you create and store strong, unique passwords for every account, making it far more difficult for attackers to compromise your logins, even if some of your information is leaked or targeted by AI-driven attacks. Get more details about my best expert-reviewed Password Managers of 2025 here.9) Keep your software updated: AI-generated malware and advanced phishing kits are designed to exploit vulnerabilities in outdated software. To stay ahead of these evolving threats, ensure all your devices, browsers, and applications are updated with the latest security patches. Regular updates close security gaps that AI-powered malware and cybercriminals are actively seeking to exploit. Kurt's key takeawaysCybercriminals are now using AI to power some of the most convincing and scalable attacks we’ve ever seen. From deepfake video calls and AI-generated phishing emails to stolen AI accounts and malware written by chatbots, these scams are becoming harder to detect and easier to launch. Attackers are even poisoning AI models with false information and creating fake tools that look legitimate but are designed to do harm. To stay safe, it’s more important than ever to use strong antivirus protection, enable multi-factor authentication, and avoid sharing sensitive data with AI tools you do not fully trust.Have you noticed AI scams getting more convincing? Let us know your experience or questions by writing us at Cyberguy.com/Contact. Your story could help someone else stay safe.For more of my tech tips & security alerts, subscribe to my free CyberGuy Report Newsletter by heading to Cyberguy.com/NewsletterAsk Kurt a question or let us know what stories you'd like us to coverFollow Kurt on his social channelsAnswers to the most asked CyberGuy questions:New from Kurt:Copyright 2025 CyberGuy.com.  All rights reserved. Kurt "CyberGuy" Knutsson is an award-winning tech journalist who has a deep love of technology, gear and gadgets that make life better with his contributions for Fox News & FOX Business beginning mornings on "FOX & Friends." Got a tech question? Get Kurt’s free CyberGuy Newsletter, share your voice, a story idea or comment at CyberGuy.com.

Whether you are trying to free up storage space or just want to tidy up your system, uninstalling apps on a Mac is a straightforward process. In many cases, removing an application is as simple as dragging it to the Trash, but depending on how the app was installed, there may be a few extra steps involved. Third-party tools are an option, but in most cases, you can uninstall Mac apps easily yourself. Some apps also leave behind associated files that you may want to get rid of to free up space, or to remove every last trace for a cleaner uninstall. Here is a step-by-step guide to uninstalling apps on a Mac, covering several different methods to help you manage your device effectively. How to uninstall apps from Launchpad Launchpad provides a simple way to remove apps that were downloaded from the App Store. Open Launchpad by clicking its icon in the Dock or by pinching closed with your thumb and three fingers on the trackpad. Find the app you want to delete. You can look it up in the search bar at the top if needed. Press and hold the app icon until it starts to jiggle. Click the small X button in the app icon's corner. Confirm by clicking Delete. If you do not see an X button, the app was likely not installed from the App Store. In that case, you will need to use a different method to remove it. How to uninstall apps by moving them to Trash For apps downloaded from the internet or installed from a disk, you can uninstall them manually through Finder. Open Finder. Navigate to the Applications folder. Locate the app you want to uninstall. Drag the app to the Trash in the Dock, or right-click the app and select Move to Trash. To completely remove the app, right-click on the Trash and select Empty Trash. Some applications may require you to enter your administrator password to complete the deletion. Also, don't empty your Trash too quickly after an install. Whether it's a program or files associated with one, it can be easier to retrieve those things if they're still lingering in your Trash. How to use an app’s uninstaller Certain apps come with their own built-in uninstallers, especially larger programs like Adobe products, Microsoft Office or antivirus software. These uninstallers are designed to remove the app and all associated files. Open the Applications folder in Finder. Look for a folder associated with the app you want to uninstall. Open the folder and find the uninstaller tool, often labeled as Uninstall [App Name] or something similar. Double-click the uninstaller and follow the on-screen instructions. If you do not see an uninstaller, check the app's official website for specific removal instructions. How to delete app leftovers manually Dragging an app to the Trash usually removes the application, but some support files, caches, and preferences can remain on your Mac. These leftover files do not typically harm your system, but they can take up unnecessary space over time. To manually delete leftover files: Open Finder and click Go in the menu bar. Select Go to Folder. Type ~/Library and press Return. Search for any folders or files related to the app. Common places to check include: ~/Library/Application Support/ ~/Library/Preferences/ ~/Library/Caches/ Move any related files or folders to the Trash. Empty Trash to permanently remove them. Be cautious when deleting files from the Library folder. Only remove files that are clearly associated with the app you uninstalled. How to uninstall apps using Terminal For users comfortable with command-line tools, Terminal offers another way to remove apps. This method can be useful for stubborn apps that do not uninstall easily through other methods. Open Terminal from Applications > Utilities. Type the following command: sudo rm -rf (do not press return/enter just yet), then drag across the app you wish to uninstall, and Terminal will automatically paste its path. Then press enter/return. Enter your administrator password when prompted and hit return to complete the action. Terminal does not provide a confirmation message, so make sure you enter the correct app name before executing the command. How to uninstall system apps and default apps MacOS does not allow users to remove core system apps like Safari, Messages or Mail through standard methods. These apps are protected to maintain system stability. While it is technically possible to delete system apps using Terminal commands and disabling System Integrity Protection (SIP), this is not recommended. Removing system apps can cause unexpected behavior and security vulnerabilities, and may interfere with system updates. For apps you cannot uninstall, consider hiding them or removing them from the Dock if you want to keep your workspace tidy. How to reinstall apps on Mac If you change your mind after uninstalling an app, it is usually easy to reinstall it. For apps downloaded from the App Store, open the App Store, search for the app and click Get or the Download button. For apps downloaded from the web, revisit the official website and download the latest version. If you deleted a default macOS app, restoring it may require reinstalling macOS or using the macOS Recovery feature. Keeping a backup of important apps or their installers can help avoid any inconvenience if you need to reinstall them later.This article originally appeared on Engadget at https://www.engadget.com/computing/laptops/how-to-uninstall-apps-on-mac-110020116.html?src=rss

Published May 25, 2025 10:00am EDT close A skydiver lost his iPhone during a 14,000-foot fall, but, miraculously, it survived without a scratch A skydiver lost his iPhone during a 14,000-foot fall, but the phone miraculously survived without a scratch. Fingerprint sensors have been around for quite some time, and they’ve become a standard feature in most smartphones. Apple introduced Touch ID on the iPhone 5s in 2013. Since then, it has appeared on 12 major iPhone models (and some iPads as well). Though Apple removed it from most phones after the iPhone 8, it’s still found in the iPhone SE series. On the flip side, almost every Android phone on the market has a fingerprint scanner. But are fingerprint scanners impossible to bypass? Frank from Deerton, Michigan, asked a similar question that I want to highlight and address because it helps all of us:"Can a website be hacked/compromised with password and fingerprint protection (multiple verification)?"I get what you’re saying, Frank. You’d think that since a fingerprint scanner literally requires your fingerprint, it couldn’t be bypassed. But you’d be wrong. While fingerprint scanners are generally more secure than facial recognition and passwords, they’re not foolproof. In fact, there are several ways bad actors can bypass them to steal your identity. A smartphone on a table   (Kurt "CyberGuy" Knutsson)5 ways bad actors can bypass fingerprint scannersThere are multiple ways hackers use to bypass fingerprint scanners. Below, I will discuss five of the more prominent methods. 1. Masterprints and DeepMasterPrintsHackers exploit the concept of "masterprints," which are fingerprints engineered to match multiple individuals' prints. Researchers at NYU Tandon developed "DeepMasterPrints" using machine learning to generate synthetic fingerprints that can deceive sensors by mimicking common fingerprint features. These artificial prints can match with a significant percentage of stored fingerprints, especially on devices with less stringent security settings. 2. Forged fingerprints using 3D printingAnother trick hackers use is making fake fingerprints. They can lift prints off things you’ve touched and then use stuff like fabric glue or even 3D printers to make molds. For example, researchers at Cisco Talos tried out a bunch of different ways to do this using 3D printing and tested them on phones like the iPhone 8 and Samsung S10; laptops like the Samsung Note 9, Lenovo Yoga and HP Pavilion X360; and even smart gadgets like padlocks.On average, the fake fingerprints worked about 80% of the time. They were able to fool the sensors at least once. Interestingly, they couldn’t crack the biometric systems on Windows 10 devices, but they pointed out that doesn’t necessarily mean those are more secure. It just means this particular method didn’t work on them.19 BILLION PASSWORDS HAVE LEAKED ONLINE: HOW TO PROTECT YOURSELF3. Brute force attacks via BrutePrintAttackers have found a cheap way to break into smartphones by brute force fingerprint authentication. The method, called BrutePrint, lets attackers get around the usual limits that stop too many failed fingerprint attempts. It works by taking advantage of two previously unknown flaws in the fingerprint system. These flaws, named Cancel-After-Match-Fail (CAMF) and Match-After-Lock (MAL), exist because of weak protection for fingerprint data on a part of the hardware called the Serial Peripheral Interface (SPI).Basically, BrutePrint uses a hardware-based man-in-the-middle attack to hijack fingerprint data. It sits between the fingerprint sensor and the phone’s secure area (called the Trusted Execution Environment) and tries as many fingerprint images as needed until it finds a match. The relieving part is that the attacker needs to have physical access to the phone for this method to work.4. Side-channel attacks with PrintListenerPrintListener is a side-channel attack that captures the sound of a finger swiping on a screen to extract fingerprint features. It might sound like something out of a sci-fi movie, but researchers have already built a proof of concept. By analyzing the friction sounds, attackers can reconstruct fingerprint patterns, potentially enhancing the effectiveness of masterprint attacks.5. Exploiting unsecured fingerprint data storageSome devices store fingerprint data without adequate encryption. If attackers gain access to this unprotected data, they can replicate fingerprints to bypass authentication. For example, in 2024, a misconfigured server exposed nearly 500 GB of sensitive biometric data, including fingerprints, facial scans and personal details of law enforcement applicants. Image of a smartphone   (Kurt "CyberGuy" Knutsson)So, can you trust fingerprint scanners?Fingerprint scanners make it easy and fairly secure to unlock your devices. Since everyone has unique fingerprints, you don’t need to remember complicated passwords. Just a quick touch and you are in. Most modern devices store your fingerprint data in secure parts of the system, and they use things like liveness detection to make sure someone is not trying to trick the scanner with a fake finger.Still, no security method is perfect. Skilled attackers have found ways to get past fingerprint scanners using high-resolution photos or 3D-printed fingers or by taking advantage of flaws in how the scanner communicates with the rest of the device. The risk really depends on how well the scanner is designed and how much effort someone puts into breaking it. For most people, fingerprint authentication is quick, easy and secure enough. However, if you are dealing with very sensitive information, relying only on biometrics might not be the best idea. A person using a fingerprint for security verification purposes    (Kurt "CyberGuy" Knutsson)6 ways to protect your fingerprint dataSafeguard your biometric identity with these essential security measures.1. Choose trusted phone brands: If you're buying a phone, stick with well-known brands like Apple, Samsung or Google. These companies take extra steps to protect your fingerprint data by storing it in secure areas of the phone that are harder to access. Cheaper or lesser-known brands may not have these protections, which makes it easier for attackers to steal your data.2. Keep your phone updated: Phone updates are not just about new features. They fix security problems that hackers might use to break into your device. If your phone asks you to install an update, do it. Most phones also let you turn on automatic updates, so you don’t have to worry about remembering. Keeping your software updated is one of the easiest and most important ways to stay protected.3. Use strong antivirus software: Install strong antivirus software to detect malware that could compromise biometric data storage. Strong antivirus software offers real-time threat detection, anti-phishing and privacy features to block unauthorized access to fingerprint data. The best way to safeguard yourself from malicious links that install malware, potentially accessing your private information, is to have strong antivirus software installed on all your devices. This protection can also alert you to phishing emails and ransomware scams, keeping your personal information and digital assets safe. Get my picks for the best 2025 antivirus protection winners for your Windows, Mac, Android and iOS devices.WHAT IS ARTIFICIAL INTELLIGENCE (AI)?4. Don’t rely only on your fingerprint: Using a fingerprint to unlock your phone is convenient, but it shouldn’t be your only line of defense, especially for sensitive apps like banking or email. Always set up a PIN, password or pattern as a backup on your iPhone and Android. This way, even if someone manages to copy your fingerprint, they still need another piece of information to get in.5. Be careful about who handles your phone: If someone else uses your phone, especially a stranger or someone you don’t know well, they might be able to copy your fingerprint from the screen. It’s rare, but it happens. To reduce this risk, avoid handing your phone to people unnecessarily and wipe your screen occasionally to remove any clear fingerprints.6. Only use fingerprint login with trusted apps: Not every app that asks for your fingerprint is trustworthy. It’s safest to use fingerprint login only with apps from known and reliable companies, like your bank, phone manufacturer or email provider. If an unfamiliar app asks for fingerprint access, it’s better to skip it and use your password instead.7. Consider using a personal data removal service: Even fingerprint scanners can be bypassed, and large amounts of personal and biometric data have been exposed in breaches. Using a personal data removal service helps reduce your risk by removing your sensitive information from public databases and data broker sites, making it harder for hackers to piece together details that could be used to steal your identity. Check out my top picks for data removal services here. Get a free scan to find out if your personal information is already out on the web.Kurt’s key takeawayPasswords are generally easier to hack than biometric data like fingerprints or facial recognition. However, the key difference is that passwords can be changed if they’re compromised. Your biometrics cannot. Most modern devices allow both options, and biometrics can offer an extra layer of security by making it harder for someone else to access your phone or apps. They're also fast and convenient, since you don’t need to remember or type anything. That said, in most cases, your device still falls back on a password or PIN when biometric identification doesn’t work, so both systems often go hand in hand.CLICK HERE TO GET THE FOX NEWS APPWith the increasing sophistication of methods to bypass fingerprint security, what should companies be doing to stay ahead of these threats and better protect user data? Let us know by writing us atCyberguy.com/ContactFor more of my tech tips and security alerts, subscribe to my free CyberGuy Report Newsletter by heading to Cyberguy.com/NewsletterAsk Kurt a question or let us know what stories you'd like us to coverFollow Kurt on his social channelsAnswers to the most asked CyberGuy questions:New from Kurt:Copyright 2025 CyberGuy.com.  All rights reserved.   Kurt "CyberGuy" Knutsson is an award-winning tech journalist who has a deep love of technology, gear and gadgets that make life better with his contributions for Fox News & FOX Business beginning mornings on "FOX & Friends." Got a tech question? Get Kurt’s free CyberGuy Newsletter, share your voice, a story idea or comment at CyberGuy.com.

When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works. Microsoft reveals unexpected way that Windows 11 clean install can boost your PC performance Sayan Sen Neowin @ssc_combater007 · May 25, 2025 05:10 EDT Earlier this year, in March, we covered an interesting Microsoft recommendation for new Windows 11 PCs. The company highlighted how its Smart App Control feature can keep PCs more secure. However, we noted that the feature is only available with clean installations. For those wondering, Microsoft debuted Smart App Control (SAC) with the release of Windows 11 version 22H2 in September 2022. And in a new article, Microsoft has shared several advantages of it over traditional antivirus software. One of those, according to Microsoft, is the inherent advantage Smart App Control offers in terms of performance over the typical AV application. The tech giant explains how constant background scanning by the latter can bog down devices. Microsoft writes: An advantage of Smart App Control is its lighter impact on your PC’s performance. Since it helps block harmful apps before they can run, there’s no need for constant scanning of active files. This means less strain on your system, so you can keep working or gaming without worrying about slowdowns. Traditional antivirus software, on the other hand, can sometimes use more resources as it scans files and processes continuously. The company says this is so because Smart App Control is a proactive antimalware solution rather than being reactive like a traditional AV. Thus the benefit is twofold according to Microsoft. Not only do users get better performance and a snappier system, but SAC can also neutralize new threats based on suspicious behavior that it can pick up based on its past machine learning and cloud data. It writes: Smart App Control takes a proactive approach, blocking suspicious apps before they get the chance to do any harm. Traditional antivirus, however, is more reactive, responding to threats only after they've been detected on your system. This means traditional antivirus is excellent at identifying and removing known threats, but it may not catch new or sophisticated ones as quickly. Irrespective of what Microsoft says though, there are reports from time to time about SAC impacting performance too due to bugs that do pop up sometimes, as this Broadcom support article points out. Curiously, Broadcom also highlights that the Redmond giant provided "no specific guidelines on how to address/remediate such scenarios." The discussion is quite relevant given that the majority seem to still feel older Windows editions like Windows 8.1/8 are ahead performance-wise, despite being relatively modern in terms of UI/UX and feature-set. Tags Report a problem with article Follow @NeowinFeed

May 25, 2025Ravie LakshmananThreat Intelligence / Software Security Cybersecurity researchers have disclosed a malware campaign that uses fake software installers masquerading as popular tools like LetsVPN and QQ Browser to deliver the Winos 4.0 framework. The campaign, first detected by Rapid7 in February 2025, involves the use of a multi-stage, memory-resident loader called Catena. "Catena uses embedded shellcode and configuration switching logic to stage payloads like Winos 4.0 entirely in memory, evading traditional antivirus tools," security researchers Anna Širokova and Ivan Feigl said. "Once installed, it quietly connects to attacker-controlled servers – mostly hosted in Hong Kong – to receive follow-up instructions or additional malware." The attacks, like those that have deployed Winos 4.0 in the past, appear to focus specifically on Chinese-speaking environments, with the cybersecurity company calling out the "careful, long-term planning" by a very capable threat actor. Winos 4.0 (aka ValleyRAT) was first publicly documented by Trend Micro in June 2024 as used in attacks targeting Chinese-speaking users by means of malicious Windows Installer (MSI) files for VPN apps. The activity has been attributed to a threat cluster it tracks as Void Arachne, which is also referred to as Silver Fox. Subsequent campaigns distributing the malware have leveraged gaming-related applications like installation tools, speed boosters, and optimization utilities as lures to trick users into installing it. Another attack wave detailed in February 2025 targeted entities in Taiwan via phishing emails that purported to be from the National Taxation Bureau. Built atop the foundations of a known remote access trojan called Gh0st RAT, Winos 4.0 is an advanced malicious framework written in C++ that makes use of a plugin-based system to harvest data, provide remote shell access, and launch distributed denial-of-service (DDoS) attacks. QQBrowser-Based Infection Flow Observed in February 2025 Rapid7 said all the artifacts flagged in February 2025 relied on NSIS installers bundled with signed decoy apps, shellcode embedded in ".ini" files, and reflective DLL injection to covertly maintain persistence on infected hosts and avoid detection. The entire infection chain has been given the moniker Catena. "The campaign has so far been active throughout 2025, showing a consistent infection chain with some tactical adjustments – pointing to a capable and adaptive threat actor," the researchers said. The starting point is a trojanized NSIS installer impersonating an installer for QQ Browser, a Chromium-based web browser developed by Tencent, that's designed to deliver Winos 4.0 using Catena. The malware communicates with hard-coded command-and-control (C2) infrastructure over TCP port 18856 and HTTPS port 443. From LetsVPN Installer to Winos 4.0 in April 2025 Persistence on the host is achieved by registering scheduled tasks that are executed weeks after the initial compromise. While the malware features an explicit check to look for Chinese language settings on the system, it still proceeds with the execution even if that's not the case. This indicates it's an unfinished feature and something that's expected to be implemented in subsequent iterations of the malware. That said, Rapid7 said it identified in April 2025 a "tactical shift" that not only switched some of the elements of the Catena execution chain, but also incorporated features to evade antivirus detection. In the revamped attack sequence, the NSIS installer disguises itself as a setup file for LetsVPN and runs a PowerShell command that adds Microsoft Defender exclusions for all drives (C:\ to Z:\). It then drops additional payloads, including an executable that takes a snapshot of running processes and checks for processes related to 360 Total Security, an antivirus product developed by Chinese vendor Qihoo 360. The binary is signed with an expired certificate issued by VeriSign and allegedly belongs to Tencent Technology (Shenzhen). It was valid from 2018-10-11 to 2020-02-02. The primary responsibility of the executable is to reflectively load a DLL file that, in turn, connects to a C2 server ("134.122.204[.]11:18852" or "103.46.185[.]44:443") in order to download and execute Winos 4.0. "This campaign shows a well-organized, regionally focused malware operation using trojanized NSIS installers to quietly drop the Winos 4.0 stager," the researchers said. "It leans heavily on memory-resident payloads, reflective DLL loading, and decoy software signed with legit certificates to avoid raising alarms. Infrastructure overlaps and language-based targeting hint at ties to Silver Fox APT, with activity likely aimed at Chinese-speaking environments." Found this article interesting? Follow us on Twitter  and LinkedIn to read more exclusive content we post. SHARE    