Bleeping Computer

Windows SmartScreen flaw exploited to drop Phemedrone malware

A Phemedrone information-stealing malware campaign exploits a Microsoft Defender SmartScreen vulnerability (CVE-2023-36025) to bypass Windows security prompts when opening URL files. Phemedrone is a ...
Neowin

New malware bypassing Windows SmartScreen is hungry for your data, and it wants it all

Data-harvesting malware Phemedrone exploits vulnerability in Windows Defender SmartScreen to avoid warnings and checks. It collects various sensitive data and sends them to the hackers. The ...
Fox News

How hackers are exploiting Windows SmartScreen vulnerability to spread malware

If you use a Windows computer, it's time to update it yet again — before hackers get to you with the latest Windows malware threat. Phemedrone is an open-source malware that targets web browsers and ...
Forbes

Hackers Bypass Windows Defender Security — What You Need To Know

Update, March 31, 2025: This story, originally published March 29, has been updated with an explanation of LOLBINS as well as further technical information regarding the Windows Defender Application ...
Infosecurity-magazine.com

Phemedrone Stealer Targets Windows Defender Flaw Despite Patch

Cybersecurity experts have uncovered the active exploitation of CVE-2023-36025, which also led to the dissemination of a new strain of malware called Phemedrone Stealer. This malware explicitly ...
CSOonline

Patched Windows SmartScreen bug actively exploited in Phemedrone infections

A Microsoft Defender SmartScreen vulnerability patched in November has found fresh active exploitation in a Phemedrone information-stealing malware campaign, according to cybersecurity research and ...