‘Illusion Gap’ allows malware to bypass Windows Defender

A loophole in SMB servers is being used by attackers to fool Windows Defender into scanning a clean-looking file. In reality, however, the file has been switched to ultimately allow execution. Read more…
Neowin