Bleeping Computer

Windows SmartScreen flaw exploited to drop Phemedrone malware

A Phemedrone information-stealing malware campaign exploits a Microsoft Defender SmartScreen vulnerability (CVE-2023-36025) to bypass Windows security prompts when opening URL files. Phemedrone is a ...
Dark Reading

Exploit for Critical Windows Defender Bypass Goes Public

A proof-of-concept exploit (PoC) has become available for a critical zero-day vulnerability in the Windows SmartScreen technology. Microsoft issued a patch for the issue in its November Patch Tuesday ...
GizChina

Microsoft fixes a SmartScreen vulnerability that was used to distribute DarkGate malware

This kind of special file is mainly a Windows Internet shortcut (.url file). Hackers can exploit the vulnerability to create another .url file pointed to a remote SMB share hosting to perform related ...