Windows Defender Is Becoming the Powerful Antivirus That Windows 10 Needs

Worked well on mine.

edit: indeed WD doesn't catch it anymore , but Smartscreen does.

 

Worthless statement, taking into account that you can't know that it has been used because you didn't even know it exist. If someone has been using it, obviously is not going to tell anyone, that is the beauty of the "0-day" attacks that some of them are really old.

 

In Creators Update you need to use Powershell to activate PUA protection, it was the only way to activate it.

SmartScreen works, but it isnt related to WD PUA protection ...

 

i guess you right.

yes i know.

 

correct it isn't related to WD PUA protection but it is related to WD smart screen detection.
Was trying to download the AMTSO PUA test file.

 

Disregard my previous comment... I (apparently) was on the android page and thus was downloading an .apk file instead of the "PotentiallyUnwanted.exe" file. Of course it wasn't being blocked.

Going to the correct page and trying to download the executable causes Defender's PUA protection to indeed block it.

 

In regards to Win 10 native SmartScreen, doubtful it would detect a PUA imbedded in a legit software installer e.g. OpenCandy. It may detect it upon execution but by that time the crapware is already installed.

 

I dont know why you guys are still talking about SmartScreen; AMTSO PUA test is a good way to check if Windows Defender after Creators Update is still detecting PUA files using the registry tweak (HINT: It isnt), if SmartScreen is detecting or not isnt relevant at all.

Do you want to have PUA protection using Windows Defender on Creators Update? Just use the Powershell command, the rest wont work.

 

I'm slightly confused. I manually added the PUA reg tweak ages ago but I'm currently on the Creators Update. I just tested downloading the AMTSO PUA file whilst in Chrome and got a notification from Windows Defender. No reg tweaker file or Powershell was used in the making of this test.

 

I've used neither. I went into RegEdit and added the required DWORD.

 

Outstanding, so did I. I can confirm doing the registry work yourself results in a positive detection using the AMTSO PUA test. This is Creators Update build 15063.296. Edit: It's an easy thing to do, the only thing is, the "restart" button doesn't work for me on the Defender interface or in the notification.



If you click "run," the download is blocked via SmartScreen.



.

 

I'm not defending MS, nor taking their word for it, if that is what you are implying. Having said that, I would love to see some proof of a successful attack, since I got tired of counting the word "could" from the article you shared.

 

Then do the same with the ms statements

I just said that the ausence of evidences doesn't proof anything

 

I fail to see your logic. The article you shared points to a discovered and recognised "flaw" that MS agrees which eventually was patched. Then, as I said before, and for what (I suspect) you are implying in your post #552, I'd still love to see some proof of a proven (not just "could") successful attack. Anyone?

 

On the long run Microsoft will make traditional AV obsolete.
Microsoft has the financial-power, the man-power and the cloud-power, no competitor can beat.

But there will be a niche, for specialized products, that complement WD,
like HMP.A, Unchecky and VS, to name a few.

A specialized product must add a layered security, that WD can't provide.
Adware and PUPs are the most annoying threats, that are not covered by WD, even with the PUA-patch applied.

What do you guys think?

 

I think that won't go down without a bunch of lawsuits from AV vendors against Microsoft. I wouldn't mind in the least if they eliminated the need for other products, but the Nortons and Kasperskys of the world won't let it happen.

 

Over all the third-parties' dead bodies it will. Kaspersky didn't take it lying down. Squeezing out people's right to free choice about what to put on their property, their machines, is a dangerous, dangerous ideology. Checks and balances, that's the ticket

Of course, any given number of Microsoft shareholders would be supportive of such an event, I'd reckon.

 

Its true that Microsoft is a powerhouse developer, but I doubt that third party antivirus makers will let their market go away, they will fight to death to make sure Windows Defender never surpass their products.

The problem is that they will mainly use stupid antitrust lawsuits to make sure that the general consumer still have to depend on their products, its an absurd situation.

I really have to defend Microsoft stance in Windows 10, they finally delivered a security OS by default, the infections rate had dramaticaly decreased, it isnt a coincidence that Ransomware and PUPs are the main threats nowdays.

See this:
http://zdnet4.cbsistatic.com/hub/i/r/2016/12/20/5bcd8d49-1ef6-44ac-ba1e-04e467d8b3f0/resize/770xauto/200383de55b5e3437d6d82de9e96163a/ziff-security-windows-protection-rate.jpg

Source: http://www.zdnet.com/article/why-windows-10-users-have-better-anti-virus-protection/

 

I hope this doesn't happen. While I actually like Windows Defender, it is too heavy for my liking and I find it causes noticable slowdowns at times unless your PC has a fast CPU.

I could not find any recent antivirus market share satistics which include WD, and as such I have absolutely no I idea how many people are currently using Windows Defender versus third party antiviruses. But, it seems to me, that there is still a big market for third party security software.

 

I doubt that it would happen. Other vendors will fight back - there's a lot of money in this market. If they decide to do it, it will be much harder than monopolizing browser market they did in past.
Usually competition is best for customer, so I hope that they won't kill it.

 

https://www.theregister.co.uk/2017/05/09/microsoft_windows_defender_security_hole/

Vulnerabilities happen as AVs are complex and robust products. However, the predominance of a particular AV will make it a frequent target of attackers as it will enable them to attack a lot more users with less effort than if they had to focus on several AV products.

 

Microsoft had a financial reason to monopolise the browser market. They wanted websites to use ActiveX controls - which will only run on Windows, rather than using Java, which runs on multiple platforms. However, I can't see any particular reason for Microsoft to want to monopolise the antivirus market. It is in their interests to include WD as part of Windows, in order to provide protection for people not using third party antiviruses. But I think that's as far as it goes.

 

MS will always left some space fro 3rd party AVs, but at least now, every Home user and companies using Win10 is at least decently protected. Now if they want more security or don't like WD, they can still install something else.

 

I see that you are confident for what is gonna happen .... in future.

 

https://eugene.kaspersky.com/2016/11/10/thats-it-ive-had-enough/