Bonum Certa Men Certa

Windows Defender Flags Tor Browser as “Trojan Horse” Malware

posted by Roy Schestowitz on Oct 04, 2023

High Tor Vintage Comedy Poster

Reprinted with permission from Ryan Farmer.

Windows Defender Flags Tor Browser as “Trojan Horse” Malware.

Anti-virus software is terrible, and Microsoft’s is obviously no exception.

The fact that it flags a lot of Free and Open Source software makes me wonder if this is worse than the usual “it’s only guessing” that usually lead to false positives in anti-virus programs.

I’ve seen it flag LibreOffice, qBittorrent, PeaZip, and many other FOSS programs, but it also has flagged the latest Tor Browser.

This doesn’t surprise me. What does surprise me is that anyone wanting privacy would use Tor Browser on Windows, where on top of the spyware Microsoft builds into the OS, you have millions of other pieces of spyware, ranging from ransomware, to “Pegasus-like” government-backed malware. And since Windows has so many security problems, it has no trouble getting in.

The United States has committed cyberwarfare using Windows, to sabotage the Iranian nuclear program, with malware like Flame and Stuxnet, which set up on millions of Windows computers and completely eluded anti-virus programs for years.

China and Russia target Windows. Lots of governments do things like this.

Why do these go undetected for years? Are the government attackers really that good at hiding it, or do the anti-virus companies suck that much, or are they told not to do anything? Some of each?

On Debian, on most Linux distributions, you can just install Tor Browser Launcher and forget about it. It automatically downloads the Tor Browser and installs it and checks the signature to make sure it’s really from them and hasn’t been tampered with.

If you don’t want to persistently install a Linux system, you should at least consider running Tails in a live environment.

Again, who is even running Tor Browser on a Windows machine?

A lot of people use Tor criminally, like the multi-national band of criminals, crazies, and derelicts who attacked Techrights’ IRC server and briefly caused an outage of the site.

Tor was part of their harassment mechanism.

But other people use Tor because they need to be safe from actual government oppression or bypass the censors, and if they get caught using it, it could mean prison or death.

Even in America, which is no longer a free country, or a democracy, even looking up an abortion using a normal Web browser with Google can be used later to send you to prison, in some States.

It’s not safe to browse the Web as an American anymore. Even if you have done nothing wrong. Using it on Windows and without a reliable VPN and non-US server, and maybe Tor as well sometimes, is a serious mistake.

But Windows completely undermines the privacy of Tor. The software itself may work, but everything you do gets uploaded to Microsoft. If you download a file, Windows Defender (the same one that flagged Tor Browser as malware) can send them the file or a hash value so they know what you have. If you browse with it at all, Windows sends your keystrokes to Microsoft…..”For Spell Checking”.

If Tor Browser crashes, Windows will send an error report, including a crash dump of what was in the Tor Browser while it was in memory, leading up to the crash.

This is all stated in the Windows EULA. It’s possible it’s worse than we even know.

Even if you think you’ve “Disabled Telemetry” or something, it is still Windows.

Don’t trust it.

Other Recent Techrights' Posts

'Confidential Computing'? More Like a Giant Back Door.
CacheWarp AMD CPU Attack Grants Root Access in Linux VMs
Cybercrimes and Online Abuse From Extremists and Militants on a VPN/Tor
A straitjacket or lobotomy won't solve this issue
Links 02/12/2023: Pfizer Sued for Lies About Efficacy, Censorship of Scientific Dissent, More Pfizer Layoffs
Links for the day
Selling Free Software
by Richard Stallman
 
IRC Proceedings: Saturday, December 02, 2023
IRC logs for Saturday, December 02, 2023
Links 03/12/2023: CRISPR as Patented Minefield, Lots of Greenwashing Abound
Links for the day
Over at Tux Machines...
GNU/Linux news
Professor Eben Moglen: In 1991 Richard Stallman Thought GNU/Linux Was Doomed Due to Software Patents
Back when Linus Torvalds was about to release Linux Prof. Moglen and Dr. Stallman had already spent years developing GNU and refining its licence, the GPL, which Linux would later adopt
Montana’s TikTok Ban Was to Protect Free Speech and the United States' First Amendment
TikTok does not embrace Free speech
GNU/Linux Surges to Almost 4% Worldwide on Desktops/Laptops, 2% in Latest Steam Survey (Ubuntu Not the Top Distro)
We've fortunately bet on a winning platform
Links 02/12/2023: ChatGPT Drowns in Bad Press, Censorship Worldwide Increases Some More
Links for the day
[Meme] Screenshots of Web Pages (Relevant to One's Article) Are Not Copyright Infringing Anywhere in the World
bullying and hate crimes
IRC Proceedings: Friday, December 01, 2023
IRC logs for Friday, December 01, 2023
A Year of Doing Techrights 'Full Time'
been a year!
Microsoft and Its Boosters Worsen Linux Security
The circus goes on and on
Links 01/12/2023: Facebook Infested With Malicious Campaigns by Imposters, ACLU Gives Advice on Doxxing and Online Harassment
Links for the day
Just Like Its Budget Allocation, the Linux Foundation Devotes About 3% Of Its Latest Newsletter to Linux, Devotes More to Linux's Rivals
It's just exploiting the brand
Links 01/12/2023: Google Invokes Antitrust Against Microsoft
Links for the day
Over at Tux Machines...
GNU/Linux news
UK Government Allowing Microsoft to Take Over Activision Blizzard Will Destroy Jobs
Over 30,000 fired this year? More?
It's Cheaper to Pay Bribes (and Produce Press Releases) Than to Pay Fines (After Lots of Negative Publicity)
Does the UK still have real sovereignty or do corporations from overseas purchase decisions and outcomes?
November 2023 Over With GNU/Linux at All-Time Highs According to statCounter
ChromeOS+GNU/Linux combined are about 7% of the "market"
New Report Provides Numerical Evidence That Google Hired Too Many People From Microsoft (and Became Malicious, Evil, Sociopathic)
"Some 12,018 former Microsoft employees currently work for the search and data giant"
Google: Keep Out, Don't Save Your Files, and Also Let Us Spy on Everything You Do
Do you still trust "clown" storage?
IRC Proceedings: Thursday, November 30, 2023
IRC logs for Thursday, November 30, 2023
Links 01/12/2023: Many Suppressions in Hong Kong and Attempts to Legitimise Illegal and Unconstitutional Fake Patent 'Court' in EU (UPC)
Links for the day