Skip to main content
  1. Home
  2. Computing
  3. News

Windows Creators Update to improve Defender’s detection and response

By

Microsoft is continuing to update its Windows Defender platform and will issue a big overhaul to some of its functions in the upcoming Creators Update. Specifically, it will improve the ways in which the anti-malware software detects, investigates and responds to a range of threats from different actors.

Along with Windows Firewall, Windows Defender is seen by many as the baseline of defense for a Windows-based PC. It can go hand in hand with third-party antivirus and anti-malware products, but Windows Defender is the first and last step in protecting many millions of systems the world over. So, keeping it updated and capable of tackling the latest threats is rather important.

Recommended Videos

In the Creators Update, Microsoft will update its ability to detect memory and kernel intrusions, where typically attackers could hide from traditional detection methods. Microsoft claims to have already leveraged this ability to prevent new zero-day attacks on Windows and has used machine learning to counter the changing trends in attack vectors.

Related: 
Best new movies to stream on Netflix, Hulu, Prime Video, Max (HBO), and more

Customers can even add in their own indications of intrusion to augment the detection dictionary.

Opening up the anti-malware process to consumers is a major part of the changes Microsoft is making in the Creators Update. When it comes to threat investigation, Microsoft has added a “single pane of glass across the entire Windows security stack.” In essence, everyone will be able to see what Windows Defender is doing: what it’s blocking, what it’s quarantining and what it’s keeping an eye on.

All of that will be available within a single view to make it easier for security teams to analyse potential and historic threats to the system. This should enable a deeper understanding of the types of attacks coming in, which makes it easier for security professionals and end users to prevent further attacks in the future.

IT managers will be able to look at up to six months of logs for an entire organization’s cloud-connected systems, to provide historic context for any studied attacks.

Giving those same security professionals additional power to combat ongoing attacks, Windows Defender’s update response system will give them manual controls for isolating machines, banning certain files from the network, and killing and quarantining certain processes or files.

All of that and more will be added as part of the upcoming Creators Update. If you’d like to try it out now, you can start a free trial with the Advanced Thread Protection system today.

Jon Martindale
Jon Martindale
Evergreen writer
Jon Martindale is a freelance evergreen writer and occasional section coordinator, covering how to guides, best-of lists, and…
Topics

Editors’ Recommendations

This Windows 11 update makes Start Menu much more desirable and usable again
The Dell XPS 13 on a table with the Start Menu open.

The Start Menu has been the central element in Microsoft Windows for nearly three decades. Though loved initially for its resourcefulness, the Menu went through some debatable -- I call them abhorrent -- changes with Windows 8, but eventually returned to occupying less space in the interface with Windows 8.1, and then Windows 10 and 11. Despite the rescuing, it is still reeling under the damaging changes in the form of recommendations and random automatically populating lists that reduce it to a mere glorified search interface. However, Microsoft may now be looking to resolve these issues and bringing back a more simplified interface with an upcoming update.

Microsoft is testing a new interface for Start Menu on Windows 11, reducing the existing clutter of randomly interspersed apps and files. X user @phantomofearth, renowned for testing new features in Windows Insider builds, gave us a good look at the new interface in a detailed video walkthrough.

Read more
Windows 11 users outsmart Microsoft once again with new local account trick
A screenshot of the Windows 11 Microsoft Account setup page

A newly discovered trick allows Windows 11 users to bypass Microsoft’s online account requirement during setup, raising questions around user control and privacy. The workaround, shared by X user @witherornot1337, lets users set up Windows 11 with a local account instead of being forced to log in with a Microsoft account.

This follows previous similar methods, highlighting an ongoing cat-and-mouse game between Microsoft and privacy-conscious users. Microsoft has been increasingly pushing online accounts as a mandatory requirement for Windows 11, particularly in Home and Pro editions. This change has frustrated many users who prefer local accounts for greater privacy and independence from Microsoft’s ecosystem.

Read more
I hope Microsoft adds these 6 things to the next major Windows Update
Windows 11 logo on a laptop.

Windows 11 updates have a bit of a reputation, from slowing Intel's newest desktop processors to breaking games. Despite the occasional hiccup, we still look forward with cautious optimism.

Despite the occasional rough patch, Microsoft continues to evolve the OS, and each update feels like a chance for a new beginning. While Microsoft hasn't confirmed anything yet, the rumor mill is buzzing with what comes next, and I'm starting to feel excited. The talk of new features suggests fixes for long-standing annoyances, productivity boosts, and quality-of-life improvements worth waiting for.
What's coming to Windows in 2025?

Read more