Indonesian Political, Business & Finance News

Conventional Antivirus No Longer Sufficient as AI Malware Targets Windows

| By Soffya Ranti | Source: KOMPAS Translated from Indonesian | Technology
Conventional Antivirus No Longer Sufficient as AI Malware Targets Windows
Image: KOMPAS

Security threats to Windows 11-based devices are said to be increasingly evolving. Now, a new malware that utilises artificial intelligence (AI) has emerged and is considered more difficult to detect by conventional antivirus software.

According to a PCWorld report, one example is an AI-based malware named “DeepLoad” that employs fileless attack techniques.

With this method, the malware does not rely on suspicious files that are usually more easily recognised by security systems.

The attack is executed by tricking users into running seemingly safe commands in Command Prompt or PowerShell. From there, the infection can begin unnoticed.

Once it has successfully entered, the malware can utilise built-in Windows tools to deceive the system and communicate with the attacker’s server.

The risks posed are not insignificant, as such malware has the potential to steal sensitive data, whether belonging to individual users or companies.

This situation is a sign that cyber threats to Windows are evolving rapidly, so security gaps must be closed immediately through system updates.

Microsoft itself has released an emergency security update in mid-March for Windows 11, particularly the Enterprise versions such as 24H2, 25H2, and LTSC variants.

This update closes critical vulnerabilities in the Routing and Remote Access Service (RRAS) that could potentially be exploited by attackers to execute malicious code remotely.

In certain scenarios, victims only need to connect to a compromised server for their system to be taken over.

Security issues do not stop at the operating system level. In the March Patch Tuesday update, Microsoft closed more than 80 security vulnerabilities, including those found in Excel and other Office applications.

In fact, under certain conditions, malicious code is said to be executable simply through the preview panel in Outlook.

On the other hand, AI-based features like Copilot are also considered to potentially open new risks, especially if sensitive data is processed or forwarded automatically without the user’s awareness.

To reduce risks, users are advised to install Windows updates immediately, avoid running commands indiscriminately in PowerShell or Command Prompt, and be more vigilant against suspicious instructions circulating on the internet or in emails.

View JSON | Print