The official Xiaomi Miui community in our country.
April 25 2024
News by Xiaomi Miui Hellas
Home » All the news » PC & Portable » New malware is able to bypass Microsoft's security mechanisms
PC & Portable

New malware is able to bypass Microsoft's security mechanisms

from Mi Team0
malware logo

Researchers have recently discovered a new zero-day vulnerability, which allows them hackers to perform malware(opens in new tab) in Windows, without the victim's PC displaying any kind of warning

The new vulnerability, which has reportedly not yet been patched by Microsoft, allows hackers to bypass the Mark of the Web, which is a Windows protection method that flags files downloaded from untrusted Internet sites as dangerous.

(Image credit: Pixabay)

The malware being distributed is the Qbot (AKA Quakbot), an old and well-known trojan that targets bank accounts, but still poses a significant threat to victims.

Running infected ISO files

The distribution of the malware starts with a phishing email that contains a link to one ZIP file which is password protected.

This link then downloads to the PC a disc image file in format .IMG either as one .ISO file, which if appended (become Mount) on the victim's PC, a standalone appears JavaScript file with malformed signatures, a text file and a folder with a file . Dll.

Read also

The JavaScript file carries a VB script which reads the contents of the text file, which trigger its execution .DLL file.

As Windows does not correctly read the labels of ISO image files with the labeling Mark of the Web, they are allowed to launch the installation without any warning. On PCs running Windows 10 or later, simply double-clicking a disk image file automatically mounts the file as a new drive letter.

This is not the first time that hackers have exploited vulnerabilities in the Mark of the Web. Recently they even tried to develop a similar method for its distribution Magniber ransomware, as he says BleepingComputer.

Η Microsoft apparently he knew of this vulnerability from October of 2022, but it hasn't released a patch yet, and we assume it will go ahead with releasing an UPDATE this coming December.

Mi TeamDo not forget to follow it Xiaomi-miui.gr on Google News to be informed immediately about all our new articles! You can also if you use RSS reader, add our page to your list by simply following this link >> https://news.xiaomi-miui.gr/feed/gn

 

Follow us on Telegram  so that you are the first to learn our every news!

 

Follow us on Telegram (English language) so that you are the first to learn our every news!
Community editorial team. We are always looking for the best news and presentations!

Read also

Windows 12 : May be available through a subscription service (for a monthly or annual fee)

Mi Team

Caution : Immediately get rid of those infected Android TV Boxes you may have acquired

Mi Team

Caution : Delete these 38 apps from your Android devices

Mi Team

Warning : Delete these 19 malicious apps from your device immediately (before it's too late)

Deals Team

Attention : Delete these 34 dangerous apps from your devices immediately (Malware Alert)

Mi Team

Warning : New version of Roaming Mantis malware on Android, changes DNS to hack WiFi routers

Dimitrios Dagkalidis

Leave a comment

Save my name, email, and website to this navigator, next time I comment.

* By using this form you agree to the storage and distribution of your messages on our page.

This site uses Akismet to reduce spam comments. Find out how your feedback data is processed.

Leave a Review

Xiaomi Miui Hellas
The official community of Xiaomi and MIUI in Greece.

About us

About us

We are the official Fan Club (community) of Xiaomi and Miui in Greece.
We wish you a good stay in our community.

[rss-feed-icon]

@2018 - news.xiaomi-miui.gr. All Rights Reserved.
Read also
Huawei has launched the 8GB+256GB version of the MatePad 11 in China, priced at…