This data-stealing Windows malware bypasses Defender, but protecting your PC is easy

Sarah Chaney

January 16, 2024 at 4:00 AM·2 min read

According to a recent report by Trend Micro researchers (via TechRadar), your Windows PC could be vulnerable to new malware known as Phemedrone Stealer. This malware is taking advantage of a vulnerability in Microsoft Windows Defender SmartScreen, and it's capable of working around your PC's built-in Defender antivirus software.

Officially, the malware is tracked as CVE-2023-36025 and has a vulnerability score of 8.8/10. If your PC is targeted, the Phemedrone Stealer malware can take sensitive data, like passwords and authentication codes, from your web browsers, cryptocurrency wallets, and even messaging platforms, like Steam, Discord, or Telegram.

The attackers are also capable of seeing your PC's hardware, location, and operating system data. Your data can be stolen and/or screenshot, and then sent back to the hackers through Telegram or their command-and-control (C&C) server. Luckily, Microsoft has issued a patch for this vulnerability flaw—you just need to update your PC.

Is your Windows PC at risk?

Whereas Microsoft's Windows Defender SmartScreen typically performs checks and pops up prompts, this Phemedrone Stealer malware can work around all of these security measures. Trend Micro explained in its report that "various demos and proof-of-concept codes have been circulated on social media, detailing the exploitation of CVE-2023-36025."

As the vulnerability is shared more, more people become aware of the flaw, but this also means more attackers become aware of how to use the flaw to their advantage. Trend Micro writes, "Since details of this vulnerability first emerged, a growing number of malware campaigns, one of which distributes the Phemedrone Stealer payload, have incorporated this vulnerability into their attack chains."

Microsoft issued a patch for this vulnerability flaw in mid-November 2023, but plenty of hackers are seeking out Windows PCs that haven't been updated yet. If you haven't updated your computer in a while, now is definitely the time to do so.

To see if your computer has any updates ready to be downloaded and installed, head to the search bar next to the Start button and type "Update." Select Check for updates from the menu options.

Here, you can see which updates, if any, your Windows PC is ready for. It can take some time for Microsoft or other major companies to issue a fix or patch for malware, but keeping your system up to date is the best way to protect yourself against attacks.

If you use a Google account, you might also want to check out this sneaky malware that lets hackers access Google accounts without login information or two-factor authentication.

Yahoo Sports
Former NBA guard Darius Morris dies at 33
Former NBA guard Darius Morris has died at the age of 33. He played for five teams during his four NBA seasons. Morris played college basketball at Michigan.
Yahoo Sports
Caitlin Clark catches fire from 3 in WNBA preseason; Arike Ogunbowale's late heroics send Wings past Fever
Caitlin Clark’s WNBA preseason debut went much like her senior year at Iowa. She hit a bunch of 3s and did so in front of a sold-out crowd.
Yahoo Sports
2024 NFL Draft grades: Denver Broncos earn one of our lowest grades mostly due to one pick
Yahoo Sports' Charles McDonald breaks down the Broncos' 2024 draft.
Yahoo Sports
NFL Power Rankings, draft edition: Did Patriots fix their offensive issues?
Which teams did the best in the NFL Draft?
Yahoo Sports
NBA playoffs: Predictions for each second-round series and Game 7 of Cavaliers-Magic
Our NBA staff makes its picks for Knicks-Pacers and every second-round series, plus the only Game 7 of the first round.
Yahoo Sports
Formula 1: Miami Grand Prix sends cease and desist letter to prevent Donald Trump fundraiser during race
Race organizers say they'll revoke a Trump fundraiser's suite license if he holds an event for the former president on Sunday at the race.
Yahoo Sports
New details emerge in alleged gambling ring behind Shohei Ohtani-Ippei Mizuhara scandal
It turns out the money was going from Ohtani's bank account to an illegal bookie to ... casinos.
Yahoo Sports
The best RBs for 2024 fantasy football according to our analysts
The Yahoo Fantasy football analysts reveal their first running back rankings for the 2024 NFL season.
Yahoo Sports
NFL Draft grades for all 32 teams | Zero Blitz
Jason Fitz and Frank Schwab join forces to recap the draft in the best way they know how: letter grades! Fitz and Frank discuss all 32 teams division by division as they give a snapshot of how fans should be feeling heading into the 2024 season. The duo have key debates on the Dallas Cowboys, New York Giants, New Orleans Saints, Los Angeles Rams, New England Patriots, Las Vegas Raiders and more.
Yahoo Sports
Lakers fire head coach Darvin Ham after just 2 seasons, latest playoff series loss to Nuggets
Despite a trip to the Western Conference finals in his first season with the team, the Lakers are now ready to look for a replacement for Darvin Ham.
Yahoo Finance
CVS stock plunges after earnings numbers one analyst 'did not even believe'
CVS warns it could cede Medicare Advantage market share as reimbursement rates pressure the company.
TechCrunch
Acura’s new all-electric SUV proves the most expensive model isn’t always the best
The first electric vehicle I ever drove was a Tesla Roadster in 2011. It was with great anticipation that I slid behind the wheel of the 2025 Acura ZDX Type S. Sure, it's a midsize SUV, but it wears the Type S moniker, a name reserved only for the most fun-to-drive in the Acura stable. On launch, the ZDX will be available in A-Spec and Type S trims -- both of which come equipped with a 102 kWh battery.
Yahoo Finance
Warren Buffett pays tribute to Charlie Munger on a 'tough day' for shareholders
This year’s Berkshire Hathaway annual shareholder meeting marked a new era for the Oracle of Omaha, Warren Buffett. It’s the investing legend’s first without his right-hand man, Charlie Munger.
Yahoo Sports
Fantasy Baseball Waiver Wire: 7 pickups ready to improve your squad
Andy Behrens has a fresh batch of priority adds to help give your fantasy team a boost, led by a player set to make his season debut.
Yahoo Sports
Tight end rankings for 2024 fantasy football 2024
The Yahoo Fantasy football analysts reveal their first tight end rankings for the 2024 NFL season.
Yahoo Sports
How to watch the 2024 WNBA preseason: Caitlin Clark’s next Indiana Fever game time, channel and more
The WNBA preseason tips off this Friday. Here's how you can catch Caitlin Clark's first game.
Yahoo Sports
WWE Backlash France 2024 results, grades and analysis: Cody Rhodes defeats A.J. Styles in first title defense
The Lyon, France crowd was electric start-to-finish in WWE's first major event since WrestleMania 40
Yahoo Sports
Ex-Florida State QB and 1999 Fiesta Bowl starter Marcus Outzen dies at 46
The Seminoles lost 23-16 to Tennessee in the first-ever BCS title game.
Yahoo Sports
NFL Draft: Bears take Iowa punter, who immediately receives funny text from Caleb Williams
There haven't been many punters drafted in the fourth round or higher like Tory Taylor just was. Chicago's No. 1 overall pick welcomed him in unique fashion.
Yahoo Sports
MLB Power Rankings: Braves move into the top spot followed by Dodgers, Phillies as injuries take a toll across the league
From the Braves to the Marlins, here's where all 30 teams stand after the season's first month.

News

Life

Entertainment

Finance

Sports

New on Yahoo

This data-stealing Windows malware bypasses Defender, but protecting your PC is easy

Is your Windows PC at risk?

Recommended Stories

Former NBA guard Darius Morris dies at 33

Caitlin Clark catches fire from 3 in WNBA preseason; Arike Ogunbowale's late heroics send Wings past Fever

2024 NFL Draft grades: Denver Broncos earn one of our lowest grades mostly due to one pick

NFL Power Rankings, draft edition: Did Patriots fix their offensive issues?

NBA playoffs: Predictions for each second-round series and Game 7 of Cavaliers-Magic

Formula 1: Miami Grand Prix sends cease and desist letter to prevent Donald Trump fundraiser during race

New details emerge in alleged gambling ring behind Shohei Ohtani-Ippei Mizuhara scandal

The best RBs for 2024 fantasy football according to our analysts

NFL Draft grades for all 32 teams | Zero Blitz

Lakers fire head coach Darvin Ham after just 2 seasons, latest playoff series loss to Nuggets

CVS stock plunges after earnings numbers one analyst 'did not even believe'

Acura’s new all-electric SUV proves the most expensive model isn’t always the best

Warren Buffett pays tribute to Charlie Munger on a 'tough day' for shareholders

Fantasy Baseball Waiver Wire: 7 pickups ready to improve your squad

Tight end rankings for 2024 fantasy football 2024

How to watch the 2024 WNBA preseason: Caitlin Clark’s next Indiana Fever game time, channel and more

WWE Backlash France 2024 results, grades and analysis: Cody Rhodes defeats A.J. Styles in first title defense

Ex-Florida State QB and 1999 Fiesta Bowl starter Marcus Outzen dies at 46

NFL Draft: Bears take Iowa punter, who immediately receives funny text from Caleb Williams

MLB Power Rankings: Braves move into the top spot followed by Dodgers, Phillies as injuries take a toll across the league