103
submitted 1 year ago by jet@hackertalks.com to c/privacy@lemmy.ml

Very weird, this is the TBB direct from Tor.

Trojan:Win32/Malgent!MTB

....Tor Browser\Browser\TorBrowser\Tor\tor.exe

And it links to : https://www.microsoft.com/en-us/wdsi/threats/malware-encyclopedia-description?name=Trojan%3AWin32%2FMalgent!MTB&threatid=2147836816

Anyone else having issues with TBB?

all 22 comments
sorted by: hot top controversial new old
[-] nottheengineer@feddit.de 87 points 1 year ago

Classic Microsoft. They regularly use defender to harrass users of software they don't like.

[-] grue@lemmy.world 45 points 1 year ago* (last edited 1 year ago)
[-] grayman@lemmy.world 5 points 1 year ago

Ha. I forgot about that episode of the view.

[-] jet@hackertalks.com 28 points 1 year ago

Yeah, I don't see the issue in the Tor Forum, but I see other people reporting it on Reddit.

I've verified the TBB signatures, its a authentic app from Tor.

Guess its another iteration of : https://support.torproject.org/tbb/antivirus-false-positive/

Just weird to see it from Windows Defender

[-] nottheengineer@feddit.de 28 points 1 year ago

I wouldn't call that weird. Microsoft's track record for anything involving security is absolutely atrocious, to a point where you now have to assume everything in azure and every single windows computer is compromised: https://news.ycombinator.com/item?id=37702095

[-] possiblylinux127@lemmy.zip 14 points 1 year ago

Upload to virus total and show the result. Also its not a good idea to run Tor on windows.

[-] krolden@lemmy.ml 13 points 1 year ago
[-] possiblylinux127@lemmy.zip 17 points 1 year ago

Because windows is full of telemetry and has lots of malware developed for it.

Not to mention the NSA will know you visited the Tor page and have Tor installed.

Its best to use it from Tails

[-] Roy@sopuli.xyz 3 points 1 year ago

But doesn’t NSA also by that logic know that you have visited Tails download page and have downloaded the ISO at some point?

[-] Qvest@lemmy.world 7 points 1 year ago

by the same logic, they won't know what you do inside Tails, nor when you boot it up

[-] Boring@lemmy.ml 3 points 1 year ago

if the NSA knows I shitpost on dread then why do my posts have zero likes?

[-] Custodian1623@lemmy.world 10 points 1 year ago

too easy for Microsoft or third-parties to collect telemetry data would be my guess

[-] jet@hackertalks.com 2 points 1 year ago

https://www.virustotal.com/gui/file/3807d96998a15aed25ec9a95c3183385c6c73f6dde811ef2452c30f5f7df2810

Bkav Pro W32.AIDetectMalware.64

Microsoft Trojan:Win32/Malgent!MTB

Rising Trojan.Malgent!8.10C33 (CLOUD)

The rest are green.

[-] jet@hackertalks.com 6 points 1 year ago
[-] jack@monero.town 1 points 1 year ago* (last edited 1 year ago)

Why do you use Tor? Just use regular Firefox, it's much faster. Doesn't have all that privacy-bloat, you don't need that with Windows anyways

this post was submitted on 30 Sep 2023
103 points (96.4% liked)

Privacy

31992 readers
473 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

Chat rooms

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS