OS SecurityDark Reading
7.5 — HIGH
'Harmless' Global Adware Transforms Into an AV Killer
A benign looking update Dragon Boss pushed out in March 2025 established persistence via scheduled tasks and arranged for future payloads to be excluded from Windows Defender.
🤖 AI BriefingAuto-generated threat analysis
🔍Threat Overview
A benign-looking adware, Dragon Boss, exploited Windows Defender's exclusion policy to establish persistence and evade detection, posing a significant threat to users' systems.
⚙️Technical Details
Affected Systems
Windows operating systems
Attack Vectors
Scheduled tasksWindows Defender exclusion
💥Impact Assessment
Severity: h
Who Is at Risk
Users of Windows operating systems
🛡️Recommended Actions
1Regularly update and patch Windows operating systems with the latest security patches.
2Monitor system logs for suspicious activity related to scheduled tasks.
3Run a full scan using an anti-malware software to detect and remove any remaining adware.
📦Affected Products
Windows operating systems
Read the full article
This is a curated summary. The complete article is available at Dark Reading.