Bonum Certa Men Certa

Windows Defender Flags Tor Browser as “Trojan Horse” Malware

posted by Roy Schestowitz on Oct 04, 2023

High Tor Vintage Comedy Poster

Reprinted with permission from Ryan Farmer.

Windows Defender Flags Tor Browser as “Trojan Horse” Malware.

Anti-virus software is terrible, and Microsoft’s is obviously no exception.

The fact that it flags a lot of Free and Open Source software makes me wonder if this is worse than the usual “it’s only guessing” that usually lead to false positives in anti-virus programs.

I’ve seen it flag LibreOffice, qBittorrent, PeaZip, and many other FOSS programs, but it also has flagged the latest Tor Browser.

This doesn’t surprise me. What does surprise me is that anyone wanting privacy would use Tor Browser on Windows, where on top of the spyware Microsoft builds into the OS, you have millions of other pieces of spyware, ranging from ransomware, to “Pegasus-like” government-backed malware. And since Windows has so many security problems, it has no trouble getting in.

The United States has committed cyberwarfare using Windows, to sabotage the Iranian nuclear program, with malware like Flame and Stuxnet, which set up on millions of Windows computers and completely eluded anti-virus programs for years.

China and Russia target Windows. Lots of governments do things like this.

Why do these go undetected for years? Are the government attackers really that good at hiding it, or do the anti-virus companies suck that much, or are they told not to do anything? Some of each?

On Debian, on most Linux distributions, you can just install Tor Browser Launcher and forget about it. It automatically downloads the Tor Browser and installs it and checks the signature to make sure it’s really from them and hasn’t been tampered with.

If you don’t want to persistently install a Linux system, you should at least consider running Tails in a live environment.

Again, who is even running Tor Browser on a Windows machine?

A lot of people use Tor criminally, like the multi-national band of criminals, crazies, and derelicts who attacked Techrights’ IRC server and briefly caused an outage of the site.

Tor was part of their harassment mechanism.

But other people use Tor because they need to be safe from actual government oppression or bypass the censors, and if they get caught using it, it could mean prison or death.

Even in America, which is no longer a free country, or a democracy, even looking up an abortion using a normal Web browser with Google can be used later to send you to prison, in some States.

It’s not safe to browse the Web as an American anymore. Even if you have done nothing wrong. Using it on Windows and without a reliable VPN and non-US server, and maybe Tor as well sometimes, is a serious mistake.

But Windows completely undermines the privacy of Tor. The software itself may work, but everything you do gets uploaded to Microsoft. If you download a file, Windows Defender (the same one that flagged Tor Browser as malware) can send them the file or a hash value so they know what you have. If you browse with it at all, Windows sends your keystrokes to Microsoft…..”For Spell Checking”.

If Tor Browser crashes, Windows will send an error report, including a crash dump of what was in the Tor Browser while it was in memory, leading up to the crash.

This is all stated in the Windows EULA. It’s possible it’s worse than we even know.

Even if you think you’ve “Disabled Telemetry” or something, it is still Windows.

Don’t trust it.

Other Recent Techrights' Posts

There's Nothing "Funny" About Attacking Free Speech and Software Freedom
persistent focus on the principal issues is very important
GNU/Linux Adoption in Africa, a Passageway Towards Freedom From Neo-Colonialism
Digi(tal)-Colonialism and/or Techolonialism are a thing. Can Africa flee the trap?
Links 06/12/2023: Many More December Layoffs
Links for the day
IRC Proceedings: Tuesday, December 05, 2023
IRC logs for Tuesday, December 05, 2023
PipeWire 1.0: Linux audio comes of age
Once upon a time, serious audio users like musicians and audio engineers had real trouble with Linux
This is How 'Linux' Foundation Presents Linux to the World
Right now it even picks Windows over Linux in some cases
Links 05/12/2023: Microsoft's Chatbot as Health Hazard
Links for the day
Professor Eben Moglen Explained How Software Patent Threats Had Changed Around 2014 (Alice Case) and What Would Happen Till 2025
clip aged reasonably well
CNN Contributes to Demolition of the Open Web
Reprinted with permission from Ryan Farmer
Eben Moglen on Encryption and Anonymity
The alternate net we need, and how we can build it ourselves
Yet More Microsofters Inside the Board of Mozilla (Which Has Just Outsourced Firefox Development to Microsoft's Proprietary Prison)
Do you want a browser controlled (and spied on) by such a company?
IRC Proceedings: Monday, December 04, 2023
IRC logs for Monday, December 04, 2023
GNU/Linux Now Exceeds 3.6% Market Share on Desktops/Laptops, According to statCounter
things have changed for Windows in China
Over at Tux Machines...
GNU/Linux news
Links 05/12/2023: Debt Brake in Germany and Layoffs at Condé Nast (Reddit, Wired, Ars Technica and More)
Links for the day
[Meme] Social Control Media Giants Shaping Debates on BSDs and GNU/Linux
listening to random people in Social Control Media
Reddit (Condé Nast), Which Has Another Round of Layoffs This Month, Incited People Against GNU/Linux Users (Divide and Rule, It's 2003 All Over Again!)
Does somebody (perhaps a third party) fan the flames?
Who Will Hold the Open Source Initiative (OSI) Accountable for Taking Bribes From Microsoft and Selling Out to Enable/Endorse Massive Copyright Infringement?
it does Microsoft advocacy
Using Gemini to Moan About Linux and Spread .NET
Toxic, acidic post in Gemini
Web Monopolist, Google, 'Pulls a Microsoft' by Hijacking/Overriding the Name of Competitor and Alternative to the Web
Gulag 'hijacking' 'Gemini'
Links 04/12/2023: Mass Layoffs at Spotify (Debt, Losses, Bubble) Once Again
Links for the day
ChatGPT Hype/Vapourware (and 'Bing') Has Failed, Google Maintains Dominance in Search
a growing mountain of debt and crises
[Meme] Every Real Paralegal Knows This
how copyright law works
Forging IRC Logs and Impersonating Professors: the Lengths to Which Anti-Free Software Militants Would Go
Impersonating people in IRC, too
IRC Proceedings: Sunday, December 03, 2023
IRC logs for Sunday, December 03, 2023
GNU/Linux Popularity Surging, So Why Did MakeUseOf Quit Covering It About 10 Days Ago?
It's particularly sad because some of the best articles about GNU/Linux came from that site, both technical articles and advocacy-centric pieces
Links 04/12/2023: COVID-19 Data Misused Again, Anti-Consumerism Activism
Links for the day