is this a hacking attempt ?

Rock.87
Rock.87 Defender of the month ✭✭✭

i installed this software from M.S. store ( check screenshot no 1 )

After the installation when i opened it, bitdefender informed me about a threat (

check screenshot no 2

the website to which the discussed software was about to communicate was inaccessible when i tried and gave this error ( check screenshot no 3 )

plz let me know that was that a hacking attempt & was my ms.account password was targeted?

Answers

  • Hello,

    Not necessarily, however that app is trying to send your credentials using HTTP instead of HTTPS.

    Unlike HTTP (Hypertext Transfer Protocol), HTTPS (safer HTTP Secure standard, HTTPS) is encrypted using Transport Layer Security (TLS), securing communications between your computer and the websites you visit.

    In other words, the information exchanged between you and that domain is not in clear text, but encrypted. In the situation you are experiencing it's unsafe to proceed.

    Regards

    Premium Security & Bitdefender Endpoint Security Tools user

  • Rock.87
    Rock.87 Defender of the month ✭✭✭

    i did not added any sort of credentials then which credentials it was going to share ?

  • That app is trying to send some data from your device unencrypted, so this was detected by the antivirus and blocked. The software constantly monitors network traffic on the device. It inspects the data packets that are being sent and received to detect any potentially unsafe connections. When it blocks an unsafe connection to HTTP, it generally does so through a combination of techniques that involve monitoring network traffic, analyzing the behavior of applications, and enforcing security policies. If an app such as the one you have recently installed attempts to send data over an unencrypted HTTP connection, the antivirus may flag this as a risky behavior since HTTP does not provide the security guarantees that HTTPS does, such as encryption and protection against man-in-the-middle attacks. So even if you haven't actually added any credentials, by the looks of it that app was trying to send some related data and this was considered a risk.

    This may not really be a targeted attack towards yourself, but it's no secret that some apps do send user data without consent or attempt to steal credentials and other sensitive information. This type of behavior is generally considered malicious and falls into categories such as spyware, adware, or data-harvesting apps. A spyware app might silently run in the background, capturing login credentials, credit card numbers, and other personal information, then sending it to a remote server controlled by an attacker. Other apps may mimic legitimate services to trick users into entering their login credentials, which are then stolen and used for unauthorized access to the user’s accounts. And the list goes on, really. Bottom line is, this blocking mechanism helps protect the user's data from being intercepted or compromised by attackers, particularly on networks that may not be secure, or over an unencrypted connection.

    I hope this information gives you more clarity.

    Regards,

    Alex

    Premium Security & Bitdefender Endpoint Security Tools user

  • Alexandru_BD
    Alexandru_BD admin
    edited September 3

    Now for me, even the app itself is a red flag. Why would you require a temporary phone number anyway?

    Premium Security & Bitdefender Endpoint Security Tools user

  • Rock.87
    Rock.87 Defender of the month ✭✭✭

    Because i need to make a g-mail account , the cruel dictators ve hijacked the regime , they ve detained so many civilians and journalists, put so many restrictions on social media ( to silence my countrymen ) and also launched the Chine firewall across the country to keep an eye on each & every digital move of the nation . you may verify it by exploring the news about Pakistan. can u help me to get a secure email without the need of a phone no ?

  • Rock.87
    Rock.87 Defender of the month ✭✭✭

    Not only I, but nearly all journalists in my country are making such efforts. The rationale for this has been conveyed to your email inbox

  • Hi and thanks for elaborating on the current situation.

    I'm sorry to hear of such events. I wish you strength and resilience during these difficult times.

    Bitdefender does not provide actual email services, but it offers certain security measures to protect against threats that can arrive through emails.

    Regards,

    Alex

    Premium Security & Bitdefender Endpoint Security Tools user