Head·word /ˈhedˌwɜː(ɹ)d/ n. @headword

Replied in thread

**Kevin Karhan** @kkarhan@infosec.space · May 22

@GossiTheDog @signalapp it merely prevents #Screenshots by claiming it's #DRM'd content.

It's a mere ask and #Microsoft could specifically close that #API and make it subject to contractual agreements (as they did with their #Antivirus API calls to disable #WindowsDefender!) if they decide this is against their wishes.
It also doesn't prevent the #Keylogger nor works against the known #CryptoAPI #backdoor affecting all #Browsers (except #Firefox and @torproject / #TorBrowser) which can be triggered by a single #HTTPS request.

The correct solution for #Signal would be to alert all their users and specifically #block #Windows in general or at least #Windows11 simply because it is a #Govware and empirically cannot be made private or secure.

But that would require them to actually give a shit!

GitHubGitHub - kkarhan/windows-ca-backdoor-fix: Fixes a critical backdoor in Windows' CryptoAPI, which allows to unconsenting Update of CA Certificates in the background. See https://www.heise.de/ct/ausgabe/2013-17-Zweifelhafte-Updates-gefaehrden-SSL-Verschluesselung-2317589.htmlFixes a critical backdoor in Windows' CryptoAPI, which allows to unconsenting Update of CA Certificates in the background. See https://www.heise.de/ct/ausgabe/2013-17-Zweifelhafte-Updates-gefae...

**Yellow Flag** @WPalant@infosec.exchange · Dec 16, 2024

Dec 16, 2024

Yellow Flag @WPalant@infosec.exchange

I just replied to a blog comment, and I thought that I post my reply here as well:

I think that I have good reasons to be “against Avast,” having published seven articles on them so far. The security issues alone are bad enough. But Avast abused their position to collect and sell users’ browsing profiles. After they were caught they claimed the data to be anonymized, they claimed to only sell aggregated data – and they continue lying to this day, despite there being conclusive evidence to the contrary. While the company has been bought, it’s still the same people in charge. This sort of undermines any trust in them for anything related to security.

As the security of antivirus software goes, I’m not very fond of any as the articles in the “antivirus” category of my blog show. With Kaspersky it wasn’t only the security issues but also how they handled them, pushing out half-hearted fixes only for these to be circumvented shortly afterwards. McAfee and BullGuard had massive security issues stemming from being careless about security and not following best practices.

I’ve found a critical security issue in Bitdefender’s solution as well, but with them I at least had the impression that they were trying. Unfortunately, that’s currently the bar in the antivirus industry – at least trying to make their product secure.

Security-wise, one good thing about Windows Defender is that it only needs to do one job. It doesn’t need all the extra functionality as a selling argument. It doesn’t need to be a banking browser, it doesn’t need to be a phishing protection, it only needs to be an antivirus solution. It can keep a very small attack surface compared to all those antivirus suites, and so it does (yes, I checked).

#antivirus #security #avast

**LFA** @lfa@hostux.social · Aug 22, 2024

Aug 22, 2024

LFA @lfa@hostux.social

I've been saying that #windows is a #virus since the 90s, and people is starting to get it now.

In fact some fables and legends tell that #WindowsDefender was created with the sole purpose of having an antivirus software that did not detect Windows as a threat

https://arstechnica.com/security/2024/08/a-patch-microsoft-spent-2-years-preparing-is-making-a-mess-for-some-linux-users/

Ars Technica · Aug 21, 2024“Something has gone seriously wrong,” dual-boot systems warn after Microsoft updateMicrosoft said its update wouldn't install on Linux devices. It did anyway.

Replied in thread

**Kevin Karhan** @kkarhan@infosec.space · Jul 20, 2024

Jul 20, 2024

Kevin Karhan @kkarhan@infosec.space

@Cappyjax @WB2EEE @Zugschlus @elly

I disagree with your assessment to some extent, as on #Linux there's not much of a tolerace or even acceptance of #rootkits like #CorwdStrike for all the right reasons!

#Scareware like that has no legitimate reason to exist and the only place I've seen that is on #Windows because people distrusting #WindowsDefender and thus #Microsoft are unwilling to to what is evidently the correct solution and yeet Windows for good.

Cuz it's not about #Fanboyism, but a fact that most Windows - #Sysadmins (or rather decisionmakers for that matter) seem to be high on #Copium and refuse to take actual #consequences but accept the #Enshittification as a fact of life when it's not...

Or am I the only one who remembers the rightful backclash when #ads were shoved into #Ubuntu whilst on #Windows11 and #Windows10 people just seem to shrug their shoulders?

It's just that this entire shitshow would not have happened on #Linux because here we don't have an entire ecosystem of #ValueRemoving "#AntiVirus" bs being shoved on Desktops and Servers in the form of #Binaryblob #Kernelhacks!

MastodonCpyJx 🍉 (@Cappyjax@mastodon.social)@kkarhan@infosec.space @WB2EEE@mastodon.radio @Zugschlus@zug.network @elly@donotsta.re I'm a Linux fanboy but what you're saying are half-truths mixed with non sequiturs to make it seem like this issue could never happen on Linux. What happened to Windows/CrowdStrike can happen to _any_ system. Full stop. The only reason it didn't affect every Linux system is because the ecosystem isn't homogeneous. If they had all been on the same version that crashed, then **every single one** would have crashed. Good admin practice isn't exclusive to Linux.

#AntiVirus

**Peter Guhl** @bones0@chaos.social · Oct 31, 2023

Oct 31, 2023

Peter Guhl @bones0@chaos.social

"Der Administrator" - das bin offensichtlich *nicht* ich, hat eine Cloud-Überprüfung von irgend etwas auf meinem Computer angefordert. Ich erfahre nicht, welche Datei das war, was dabei herausgekommen ist und ob sie jetzt noch da ist oder gelöscht wurde. #WindowsDefender...

**KenWalkerQB** @KenWalkerQB@mstdn.ca · Oct 11, 2023 *

Oct 11, 2023 *

KenWalkerQB @KenWalkerQB@mstdn.ca

I have had this #virus PWS:HTML/Phish.QA detected by #WindowsDefender several times in the last few days on my laptop. I had the same virus show up on my desktop last year and #microsoft told me just ignore it when I called their help line. Their software doesn't seem to fix it or quarantine it when asked to. Have others seen this? Uneasy about just allowing it but it seems to be happening daily for the last week

**seanpm2001 ️** @seanpm2001@techhub.social · Sep 10, 2023

Sep 10, 2023

seanpm2001 ️ @seanpm2001@techhub.social

Project of the day (day 19) 2023, Sunday, September 10th

#LinuxDefender : https://github.com/seanpm2001/Linux_Defender/

#Linux #Defender is an anti-virus for Linux, with a #WindowsDefender like #interface (which can be turned off when needed) it clears most common Linux desktop malware, but extends to also include #spyware and, depending on how strict you set it to be, it can block the installation of programs like Google Chrome, and other tracking software pieces (they are spyware) along with any #proprietary software.

It is written mostly in #Python with rule sets additionally being written in #YARA it is aimed at being ported to as many Linux distributions as possible. It is early in development, and is not functional yet.

**Norobiik @Norobiik@noc.social** @Norobiik@noc.social · Apr 12, 2023 *

Apr 12, 2023 *

Norobiik @Norobiik@noc.social @Norobiik@noc.social

"It took over 5 years, but Microsoft has finally fixed a bug that caused Windows Defender to drain CPU resources when Mozilla’s Firefox browser is active.

In 2018, Mozilla staff reported that #Windows10’s built-in malware-detection program caused CPU consumption to top 30%. "

5-Year-Old #WindowsDefender Bug That Caused #CPUSpikes on #Firefox Finally Fixed | #BugHunt #Browsers | PCMag

https://www.pcmag.com/news/5-year-old-windows-defender-bug-cpu-spikes-on-firefox-finally-fixed