this post was submitted on 30 Sep 2023
101 points (97.2% liked)

Privacy

31253 readers
790 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

Chat rooms

much thanks to @gary_host_laptop for the logo design :)

founded 4 years ago
MODERATORS
k_o_t@lemmy.ml
tmpod
Yayannick@lemmy.ml
ranok@sopuli.xyz
101
Tor Browser Bundle on Windows 11 Flagged as malware today (hackertalks.com)
submitted 11 months ago by jet@hackertalks.com to c/privacy@lemmy.ml
18 comments fedilink hide all child comments
 

Very weird, this is the TBB direct from Tor.

Trojan:Win32/Malgent!MTB

....Tor Browser\Browser\TorBrowser\Tor\tor.exe

And it links to : https://www.microsoft.com/en-us/wdsi/threats/malware-encyclopedia-description?name=Trojan%3AWin32%2FMalgent!MTB&threatid=2147836816

Anyone else having issues with TBB?

all 21 comments
sorted by: hot top controversial new old
[–] nottheengineer@feddit.de 84 points 11 months ago (3 children)

Classic Microsoft. They regularly use defender to harrass users of software they don't like.

[–] grue@lemmy.world 43 points 11 months ago* (last edited 11 months ago) (1 children)

[–] grayman@lemmy.world 5 points 11 months ago

Ha. I forgot about that episode of the view.

[–] jet@hackertalks.com 28 points 11 months ago (1 children)

Yeah, I don't see the issue in the Tor Forum, but I see other people reporting it on Reddit.

I've verified the TBB signatures, its a authentic app from Tor.

Guess its another iteration of : https://support.torproject.org/tbb/antivirus-false-positive/

Just weird to see it from Windows Defender

[–] nottheengineer@feddit.de 25 points 11 months ago

I wouldn't call that weird. Microsoft's track record for anything involving security is absolutely atrocious, to a point where you now have to assume everything in azure and every single windows computer is compromised: https://news.ycombinator.com/item?id=37702095

[–] possiblylinux127@lemmy.zip 15 points 11 months ago (3 children)

Upload to virus total and show the result. Also its not a good idea to run Tor on windows.

[–] krolden@lemmy.ml 12 points 11 months ago (2 children)

Why not

[–] possiblylinux127@lemmy.zip 16 points 11 months ago (2 children)

Because windows is full of telemetry and has lots of malware developed for it.

Not to mention the NSA will know you visited the Tor page and have Tor installed.

Its best to use it from Tails

[–] Boring@lemmy.ml 3 points 11 months ago

if the NSA knows I shitpost on dread then why do my posts have zero likes?

[–] Roy@sopuli.xyz 2 points 11 months ago (1 children)

But doesn’t NSA also by that logic know that you have visited Tails download page and have downloaded the ISO at some point?

[–] Qvest@lemmy.world 6 points 11 months ago

by the same logic, they won't know what you do inside Tails, nor when you boot it up

[–] Custodian1623@lemmy.world 9 points 11 months ago

too easy for Microsoft or third-parties to collect telemetry data would be my guess

[–] jet@hackertalks.com 2 points 11 months ago

https://www.virustotal.com/gui/file/3807d96998a15aed25ec9a95c3183385c6c73f6dde811ef2452c30f5f7df2810

Bkav Pro W32.AIDetectMalware.64

Microsoft Trojan:Win32/Malgent!MTB

Rising Trojan.Malgent!8.10C33 (CLOUD)

The rest are green.

[–] Zuberi@lemmy.dbzer0.com 8 points 11 months ago

Tor on windows lol

[–] jet@hackertalks.com 6 points 11 months ago

It has been mentioned in the tor forums: https://forum.torproject.org/t/new-release-tor-browser-12-5-6/9451/5

[–] jack@monero.town 0 points 11 months ago* (last edited 11 months ago)

Why do you use Tor? Just use regular Firefox, it's much faster. Doesn't have all that privacy-bloat, you don't need that with Windows anyways