A Phemedrone information-stealing malware campaign exploits a Microsoft Defender SmartScreen vulnerability (CVE-2023-36025) to bypass Windows security prompts when opening URL files.

How Does Windows SmartScreen Filter Work? SmartScreen relies on reputation-based protection to protect your device from malicious or potentially unwanted apps and websites.

A design flaw in Windows Smart App Control and SmartScreen that enables attackers to launch programs without triggering security warnings has been under exploitation since at least 2018.

Although Microsoft Defender SmartScreen scans downloads by default from all trusted sources in the Edge browser, you can disable it if you want, using the Registry Editor and the Local Group ...

Bypass Microsoft Defender SmartScreen prevented an unrecognised app from starting. Running this app might put your PC at risk warning in Windows.