Researchers reportedly discovered Microsoft's security bug in the latest version of Windows Defender. The vulnerability opens the door to malware that could compromise the integrity of crypto wallets and other sensitive data.
- Research Report | The biggest hidden danger of blockchain security in 2020 is it
- Popular Science | Blockchain Security Getting Started Notes (4)
- Hardcore: Declassified U.S. Department of Justice sues Chinese OTC acceptor for money laundering
- "This coin can be reminisced, but it was gone at that time."
- Blockchain Security | How do hackers steal your encrypted assets from their mobile phones?
- China Net An Anhongzhang: Because of the blockchain, the era of password definition business is coming | Interview with Babbitt
Microsoft Defender does not complete scanning
This bug found by Windows Latest is included with Windows Defender 4.18.2003. There are reports that this version prevented complete scans by exiting or skipping certain files. The latest Windows team reproduced the error in their lab.
The issue seems to only affect Windows 10 and may not happen during offline scanning. In fact, a full scan may be completed, but Microsoft Defender cannot report it properly. Microsoft has not resolved the issue.
As cryptocurrency-related malware continues to proliferate, this issue should be taken seriously. Many cryptocurrency investors store cryptocurrency funds in desktop wallets, which could be compromised by keyloggers or other malicious programs designed to capture sensitive data. Malware may replace the pasted Bitcoin address, causing funds to be redirected to the thief's wallet address.
Even experts in this area could be victims of these scams. At the end of last year, the VeChain Foundation lost more than one million VETs due to the inadvertent installation of malware on developers' personal computers. In addition, due to lax security protocols, thieves have successfully stolen cryptocurrencies from many exchanges.
Issues highlight tensions in crypto security
Given the poor history of Windows Defender's performance, this is not surprising. However, this also underlines the importance of properly handling cryptocurrencies. There is no shortage of very secure software-based wallets on the market. However, careless behavior, such as keeping passwords and keys in unencrypted files, can still lead to theft.
Given Microsoft's long history of security issues, many cryptocurrency investors choose to keep their funds on smartphones, which often have more secure operating systems. For example, iOS has not been hacked or has a case of malware. However, both Apple's desktop software and Android have been hit by hacking incidents. In addition, smartphones may become insecure if they have been jailbroken or incorrectly modified.
Experts agree that hardware wallets are the most secure method of storing cryptocurrencies and should be used by long-term holders. Above all, investors should respect the need for a clear process to securely store keys, passwords and other relevant information. Likewise, never hold cryptocurrencies on an exchange and never provide them to a third party for safekeeping. In other words, the freedom provided by blockchain technology is accompanied by a greater degree of personal security responsibility.