Hackers could take advantage of a recently discovered vulnerability in the Microsoft Defender antivirus on Windows, to learn where to exclude antivirus scanning and implant malware there.
This vulnerability lies in the Microsoft Defender exception list feature. Interestingly, this problem has actually been around for eight years, and it has had an impact on Windows 10 21H1 and Windows 10 21H2.
As with other antivirus programs, Microsoft Defender has a feature that allows users to add a local or network location on their device that would be excluded from malware scanning.
Users will generally make this exception to prevent the antivirus from scanning certain files or folders, which can interfere with the functionality of the application because it is considered and detected as malware.
Since this list of scan exceptions differs from user to user, this could be information that hackers can use to attack systems, as it gives them a location where they can store malicious files without fear of being detected by an antivirus.
Security researchers have listed some locations that are usually excluded from unprotected Microsoft Defender scans and many local users can access them. Regardless of the permissions they have, local users can find out registry keys and learn paths that don’t allow Microsoft Defender to check for malware or other malicious files.
Antonio Cocomazzi, the researcher from SentinelOne who reported the vulnerability which was later named RemotePotatoo, said that there is no protection for this information, which can be considered sensitive information, and those who run the reg query command, can get everything that is excluded for the Microsoft Defender scan, whether it’s a file, folder, extension or process.
Another security expert, Nathan McNulty confirmed that this issue exists in Windows 10 versions 21H1 and 21H2 but has no impact on Windows 11. He also confirmed that anyone can retrieve the exception list from the registry with entries stored in Group Policy settings. This information is more sensitive because it provides a list of exceptions for multiple computers.
While hackers need local access to get to the Microsoft Defender exception list, so far it can still be a serious threat. Many hackers have been in compromised corporate networks looking for ways to move laterally as comfortably as possible.
How To Restore Permanently lost Files in Windows
There are a few methods you can try to restore permanently lost files in Windows:
Check the Recycle Bin: If you have accidentally deleted the file, it may still be in the Recycle Bin. You can check the Recycle Bin by opening it from the desktop or by right-clicking on the Recycle Bin icon and selecting “Open.” If the file is in the Recycle Bin, you can restore it by right-clicking on it and selecting “Restore.”
Use file recovery software: There are several file recovery software programs available that can help you recover permanently deleted files. These programs scan your hard drive and try to locate deleted files that can still be recovered. Some popular file recovery software programs include Recuva, EaseUS Data Recovery Wizard, and Stellar Data Recovery.
Check for a previous version of the file: If you have enabled the File History feature in Windows, you may be able to restore a previous version of the file. To do this, right-click on the file and select “Restore previous versions.” This will open the Previous Versions window, which will show you a list of available previous versions of the file. You can then select the version you want to restore and click “Restore.”
Use a data recovery service: If you are unable to recover the lost file using the methods above, you may need to use a professional data recovery service. These services can often recover files that have been permanently deleted or lost due to hardware failure or other issues.
It’s important to note that the success of these methods will depend on various factors, such as the type of file, the method used to delete it, and the length of time that has passed since the file was deleted. Some methods may not work if the file has been overwritten or if the hard drive has been damaged.
Microsoft Releases Update KB5021855 For Windows 11 Insider Dev Channel, Pipeline Testing Only
In short, some time ago, Microsoft released a new update for Windows 11 Insider Dev Channel users, where this update is update KB5021855, where with this update, the OS build will change to 25252.1010, and as we already know, if it has the end. 1000 or 1010, it is certain that this update is just a pipeline test.
Now while Windows 11 Insider Dev Build 25252 brings a number of changes including the New Taskbar Search and the VPN Indicator on the Network Icon on the Windows 11 Taskbar, in the update released this time nothing is presented, because again, this is just a pipeline test and is intended to test the quality of Windows Update releases to users only.
So with that said, users are free to install or not at all.
Reminder: There’s Nvidia Bug in Windows 11 22H2, User Recommended Driver Update!
A few days ago there were quite a number of problems reported by Nvidia users, where the GPU Usage in the Windows 11 22H2 Task Manager did not display information correctly, some even displayed 100% GPU Usage in an idle state.
Regarding this issue, this seems to be the impact of Driver compatibility with Windows 11 22H2, as a few days ago Nvidia has confirmed this issue and the good news is that the fix has started rolling out via Nvidia Geforce Experience Beta. Now, this fix itself, for now, is only available as a Beta version which you can download via the following page.
And based on a statement from Nvidia, when an update is released for all users (non-Beta), users are required to download and update their drivers.
Then when will the latest Nvidia driver be officially released for all users and no longer be released as a Beta version?, just for your information, the update from GeForce Experience will be released in November, it’s just that there is no information on exactly when this update will be released.
But of course, there are quite a lot of Nvidia users complaining about this problem, both on the Feedback Bug and Reddit pages, even some WinPoin readers also seem to find this problem.
For those of you who can’t wait to get a fix, you can just update Geforce Experience to the Beta version which you can download on the following page.
Fix File Sharing Not Working in MacOS Ventura
SHARE More File sharing is a vital feature in macOS Ventura, as it allows multiple users to access and share...
How To Search Tabs in Google Chrome
SHARE More Google Chrome is one of the most popular web browsers used by millions of people around the world....
How To Format USB Drive on Mac
SHARE More Formatting a USB drive on a Mac is a simple process that can help you get the most...
How to Disable Missed Call Return from iPhone Lock Screen
SHARE More As an iPhone user, you may have noticed that when you miss a call, a banner notification pops...
What is Apple ID Used For
SHARE More An Apple ID is a unique account that allows users to access various Apple services and products, such...
What is Type-C USB
SHARE More Type C USB, also known as USB-C, is a new standard in USB technology that offers faster data...
How To Find Your Apple ID – With 7 Ways
SHARE More Apple ID is a unique identification that is required to access various Apple services such as iCloud, iTunes,...
What is an External Hard Drive
SHARE More An external hard drive is a type of storage device that can be used to store and back...
What is Apple ID
SHARE More An Apple ID is a unique account that is used to access various services provided by Apple, such...
5G: Everything You Need To Know | What is 5G
SHARE More 5G, or fifth-generation cellular technology, is the latest and greatest in mobile network technology. With faster speeds, lower...
- Beauty and Personal Care
- Blog Tutorials
- Home improvement
- Life Hack
- Mobile Tutorials
- MS Excel
- MS Outlook
- MS Word
- PC Tutorials
- PDF Tutorials
- Social Media
- Weight and body image
- Windows 10
- Windows 11
Phones3 years ago
Apple iPhone 11 (2019) – Release, Info, Leaks, Rumors
Phones3 years ago
Huawei New Operating System is HarmonyOS [ Officially ]
Tech3 years ago
Levi’s Bluetooth Jacket Lets You Control Your Smartphone
News4 years ago
Belle Delphine bath water – Instagram Model Sells Used Bathwater For 30$ To Their Loyal Followers