The German laboratory AV-Test tested 22 complex antivirus solutions for Windows 10. As a result, 16 antiviruses received the TOP PRODUCT awards, 8 of which scored the maximum points and were named by AV-Test experts as the best antiviruses for Windows 10.

There are many different products for Windows 10 on the market. The German AV-Test laboratory once again wondered which antivirus copes best with protecting Windows 10 devices and tested 22 comprehensive antivirus solutions for Windows 10. As a result, 16 antiviruses received the TOP PRODUCT “.

This time rating was full of surprises.

In July-August 2020, the AV-Test laboratory tested 22 security programs for [...]

Microsoft removed the ability to download files using Windows Defender after demonstrating how attackers can use this functionality to deliver malware to a computer.

We reported some time ago how Microsoft, for unclear reasons, covertly added the ability to download files using Microsoft Defender.

Following this, the cybersecurity research community expressed concern that Microsoft now allows Windows 10 antivirus to be used as LOLBINs (legitimate OS files that can be used for malicious purposes).

“With this new feature, Microsoft Defender is now part of the long list of Windows programs that can be abused by local attackers”, – wrote BleepingComputer [...]

The latest update to Microsoft Defender Antivirus for Windows 10 allows using it to download viruses, malware, and other files to Windows computer. [dropcap]Security[/dropcap] researcher Muhammad Askar discovered this ability to download malware.

The Microsoft Defender Command Line Tool update now includes a new command line argument -DownloadFile. The directive allows a local user to use the Microsoft Antimalware Service Command Line Utility (MpCmdRun.exe) to download a file from a remote location using a dedicated command.

“Well, you can download a file from the internet using Windows Defender itself. In this example, I was able to download Cobalt Strike beacon [...]

The Register noted that Citrix customers were having problems. It looks like Windows Defender is blocking Citrix products, treating them as malware, and quarantining them. [dropcap]A[/dropcap]fter the release of KB2267602 update and Windows Defender version 1.321.1319.0, users unexpectedly found that Citrix Broker and High Availability Services could not work properly. The BrokerService.exe file is marked as malware (Agent Tesla Trojan) and is sent to quarantine.

“Those wondering when the Microsoft love-in with Citrix might end will be relieved to learn that Microsoft Defender decided yesterday that Citrix Broker and High Availability Services bore all the hallmarks of a trojn”, [...]