Skip to main content

Microsoft upgrades Windows Defender to better combat new malware threats

Oops! We couldn't load this video player
Prevention is better than a cure, that’s how the old saying goes, and it is just as viable in terms of digital security as it is with our own personal health. That’s the mentality Microsoft has entrenched in its development of Windows 10, and it’s continuing to expand on that ethos with its new Advanced Threat Protection system (ATP).

Windows Defender is built into Windows 10 as a core feature, and already offers basic threat detection for all those running the operating system. But on the request of many of its customers, Microsoft is leveraging machine learning to detect threats faster than ever before.

Recommended Videos

The first step of combating and threat is registering that an attack has taken place. This can take up to 200 days with traditional techniques in some enterprises, according to Microsoft research, so its new system hopes to do it much faster. Looking back at the last six months of system logs and activities, ATP can detect when non-typical activity takes place, allowing for manual follow ups to confirm the breach.

Please enable Javascript to view this content

There’s even simplified investigation tools that circumvent the need to look through raw log files, and the ability to send files and URLs to isolated virtual machines for deeper examination. This will help responders to correctly formulate a plan to deal with the breach and figure out a method to close up the flaw in security that allowed it to take place.

The big reason Microsoft is excited for ATP, though, is that it sits alongside Windows Defender and other anti-virus and anti-malware tools without intrusion. Since it operates in a different manner, it can augment existing security, and due to its regular updates through the Windows 10 Insider program, it will be kept at the forefront of detection and malware combat.

This means there’s zero deployment cost or effort on the enterprise end, which many businesses will appreciate.

Already deployed in more than 500,000 test cases, Microsoft hopes that this added feature will encourage other businesses and individuals to switch over to Windows 10 now, with a look to enjoy the benefits of ATP in the near future.

Jon Martindale
Jon Martindale is a freelance evergreen writer and occasional section coordinator, covering how to guides, best-of lists, and…
A new test shows Microsoft Recall’s continued security problems
Recall screenshot.

Microsoft is currently previewing its latest version of Recall to Windows Insiders on Snapdragon-, Intel-, and AMD-based Copilot+ PCs -- and the topic on most users' minds is security. The company updated its security and privacy architecture for the feature in September, but, according to tests run by Tom's Hardware, it still might not be good enough.

The new version of Recall includes a sensitive information filter that's supposed to detect when there's information like credit card numbers and Social Security numbers on the screen. If it detects them, it will avoid taking a screenshot. When Tom's Hardware put this filter to the test, however, it failed in a number of situations.

Read more
Windows 11 can now run on unsupported systems, but there’s a catch
A laptop sits on a desk with a Windows 11 wallpaper.

Microsoft is now allowing users to update to Windows 11 on older, unsupported hardware, including systems that don’t meet the operating system’s strict hardware requirements.

While the company initially set these requirements — including the need for a TPM 2.0 chip and specific processor models — to ensure performance, reliability, and security, it has now provided a manual installation option for those who want to use Windows 11 on unsupported machines.

Read more
Microsoft won’t back down on Windows 11’s biggest hurdle
The Surface Pro 11 on a white table in front of a window.

Microsoft has reaffirmed that it will not lower the minimum hardware requirements for Windows 11, solidifying the need for a Trusted Platform Module (TPM) 2.0 and a compatible CPU. This decision leaves many older PCs ineligible for the upgrade. Microsoft emphasizes that these standards are vital for improved security and performance.

As per a recent blog post titled “TPM 2.0 – a necessity for a secure and future-proof Windows 11,” Microsoft reaffirmed its decision not to relax Windows 11’s strict hardware requirements. TPM 2.0 is a hardware-based security feature that protects sensitive data and ensures secure boot processes. Microsoft argues that such measures are nonnegotiable as the company continues to address rising cybersecurity threats. The minimum requirements include a list of approved CPUs, starting from AMD Ryzen 2000 and Intel 8th Gen processors, that offer advanced security features and better performance efficiency.

Read more