• About
  • Advertise
  • Careers
  • Contact
Monday, February 6, 2023
No Result
View All Result
NEWSLETTER
Cyber360 News
  • Home
  • Security
  • Data Breach
  • Cyber Attacks
  • Cyber Security
  • Cyber Crime
  • Contact Us
  • Home
  • Security
  • Data Breach
  • Cyber Attacks
  • Cyber Security
  • Cyber Crime
  • Contact Us
No Result
View All Result
Cyber360 News
No Result
View All Result
Home Security

After Hacking 250M Accounts, TrickBot Trojan Can Now ‘Disable’ Windows Defender

by Cyber360 News
November 11, 2019
in Security
0
After Hacking 250M Accounts, TrickBot Trojan Can Now ‘Disable’ Windows Defender
0
SHARES
5
VIEWS
Share on FacebookShare on Twitter

If you are someone who relies on “Windows Defender” on Windows 10 to protect your device from malware threats, you should know about the new version of TrickBot malware that attempts to disable the antivirus software altogether.

TrickBot Trojan isn’t exactly new as it surfaces from time to time. The last we heard about TrickBot was a couple of weeks ago when it managed to infect nearly 250 million Gmail accounts with new cookie stealing abilities.

jamf now

For the uninitiated, TrickBot is a trojan that tries to steal bank account information, crypto wallets, browser data, and other credentials saved on your PC and browser.

TrickBot Disabling Windows Defender

Every time TrickBot surfaces, it has newly added capabilities. This time, it has the ability to disable Windows Defender and deploys about 17 steps to achieve it.

According to Bleeping Computer, TrickBot tries to delete the WinDefend service and terminates associated processes. It also adds a DisableAntiSpyware Windows policy to disable Windows Defender.

It goes the extra malware mile by disabling Windows Defender real-time protection and Windows security notifications. Bleeping Computer’s report states:

“These methods utilize either Registry settings or the Set-MpPreference PowerShell command to set Windows Defender preferences.”

Can we stop TrickBot?

By blocking access to the Windows Registry and removing a user’s admin rights by default, TrickBot can be prevented from disabling Windows Defender.

That being said, a lot depends on how advanced the particular strain of TrickBot is because it appears to download additional payloads “to gain higher system privileges once executed.”

jamf now

Windows 10 users can make use of AppLocker to control which apps and files they can run. It covers executable files, scripts, Windows Installer files, dynamic-link libraries (DLLs), packaged apps, and packaged app installers.

Another thing Windows 10 users should check is whether “Tamper Protection” is enabled or not. This feature usually remains ‘On’ by default and as long as it is enabled, Windows 10 users should be relatively safe from getting their Windows Defender disabled.

One thing we can say for sure is that the authors of TrickBot are constantly adding new tricks and methods to bypass security so you should keep your device as secure as possible.

Also Read: Android “Sex Simulator” Ransomware Threatens Users, Spreads Via SMS
Cyber360 News

Cyber360 News

Next Post
Android “Sex Simulator” Ransomware Threatens Users, Spreads Via SMS

Android “Sex Simulator” Ransomware Threatens Users, Spreads Via SMS

Recent Posts

Twitch’s Entire Critical Data Leaked, Includes Streamer Earnings, Source Code

Twitch’s Entire Critical Data Leaked, Includes Streamer Earnings, Source Code

October 6, 2021
Former U.S. Security Firm Helped The UAE Carry Out “Karma” iMessage Hack: MIT Tech Review

Former U.S. Security Firm Helped The UAE Carry Out “Karma” iMessage Hack: MIT Tech Review

October 1, 2021
Facing “This App Has Been Blocked For Your Protection” Issue? Here’s How You Can Fix It

Facing “This App Has Been Blocked For Your Protection” Issue? Here’s How You Can Fix It

October 1, 2021

Whats New in Kali Linux?

September 14, 2021

Kali Linux 2019.3 Release (CloudFlare, Kali-status, metapackages, Helper-Scripts & LXD)

September 14, 2021

Kali Linux 2021.3 Release (OpenSSL, Kali-Tools, Kali Live VM Support, Kali NetHunter Smartwatch)

September 14, 2021

Kali Linux 2018.4 Release

September 14, 2021

Kali Linux 1.0.5 and Software Defined Radio

September 14, 2021

Kali Tools Website Launched, 1.0.9 Release

September 14, 2021

Kali Linux Dojo at Black Hat Vegas 2016

September 14, 2021

Category

Site Links

  • Log in
  • Entries feed
  • Comments feed
  • WordPress.org

About Us

We bring you the best Premium WordPress Themes that perfect for news, magazine, personal blog, etc. Check our landing page for details.

© 2019 Cyber360 News - Powered by WebSensePro

No Result
View All Result
  • Home
  • Security
  • Data Breach
  • Cyber Attacks
  • Cyber Security
  • Cyber Crime
  • Contact Us

© 2019 Cyber360 News - Powered by WebSensePro

Login to your account below

Forgotten Password?

Fill the forms bellow to register

All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In