Skip to main content
  1. Home
  2. Computing
  3. News

Windows Creators Update to improve Defender’s detection and response

By

Microsoft is continuing to update its Windows Defender platform and will issue a big overhaul to some of its functions in the upcoming Creators Update. Specifically, it will improve the ways in which the anti-malware software detects, investigates and responds to a range of threats from different actors.

Along with Windows Firewall, Windows Defender is seen by many as the baseline of defense for a Windows-based PC. It can go hand in hand with third-party antivirus and anti-malware products, but Windows Defender is the first and last step in protecting many millions of systems the world over. So, keeping it updated and capable of tackling the latest threats is rather important.

Recommended Videos

In the Creators Update, Microsoft will update its ability to detect memory and kernel intrusions, where typically attackers could hide from traditional detection methods. Microsoft claims to have already leveraged this ability to prevent new zero-day attacks on Windows and has used machine learning to counter the changing trends in attack vectors.

Related

Customers can even add in their own indications of intrusion to augment the detection dictionary.

Opening up the anti-malware process to consumers is a major part of the changes Microsoft is making in the Creators Update. When it comes to threat investigation, Microsoft has added a “single pane of glass across the entire Windows security stack.” In essence, everyone will be able to see what Windows Defender is doing: what it’s blocking, what it’s quarantining and what it’s keeping an eye on.

All of that will be available within a single view to make it easier for security teams to analyse potential and historic threats to the system. This should enable a deeper understanding of the types of attacks coming in, which makes it easier for security professionals and end users to prevent further attacks in the future.

IT managers will be able to look at up to six months of logs for an entire organization’s cloud-connected systems, to provide historic context for any studied attacks.

Giving those same security professionals additional power to combat ongoing attacks, Windows Defender’s update response system will give them manual controls for isolating machines, banning certain files from the network, and killing and quarantining certain processes or files.

All of that and more will be added as part of the upcoming Creators Update. If you’d like to try it out now, you can start a free trial with the Advanced Thread Protection system today.

Editors’ Recommendations

Topics
Jon Martindale
Jon Martindale
Computing Coordinator
Jon Martindale is the Evergreen Coordinator for Computing, overseeing a team of writers addressing all the latest how to…
It’s time to say goodbye to the Windows Control Panel
windows 10 control panel

The newer Windows Settings app has been slowly stealing features from the legacy Control Panel for years, and now Microsoft has finally said the obvious out loud -- "the Control Panel is in the process of being deprecated in favor of the Settings app."

First spotted by Neowin, a new Microsoft support page has appeared covering the various system configuration tools in Windows 10 and 11. Not only does this page refer to Settings as "the main application to customize and manage Windows settings," but it also explicitly states that the Control Panel is being deprecated. It doesn't mention any kind of date or timeline, however, which likely means the Control Panel's death will continue to be as slow as it has been up to now.

Read more
Microsoft cracks down on Windows 11 upgrade requirements
A photo of the Sensel Click Composer Software running on Windows 11

With just a little more than a year left before Windows 10 hits its end-of-life, Microsoft has been busy encouraging people to upgrade to Windows 11. One of the hurdles with getting PCs upgraded to Windows 11, though, are the hardware requirements -- and now they're cracked down on harder.

A recent beta build of Windows 11 has patched the well-used "setup.exe /product server" workaround that allowed you to completely bypass the system requirements check and run Windows 11 on a non-compliant machine -- in other words, a machine without TPM 2.0.

Read more
Windows gaming handhelds just got a huge new feature
Lies of P running on the Asus ROG Ally.

We love the ROG Ally and ROG Ally X, but Windows continues to be more of a hurdle on these devices than a benefit. Microsoft is beginning to make some progress here though, having announced an update to the Xbox Game Bar that would implement a new Compact Mode.

The Xbox Game Bar on Windows 11 has been more functional on larger monitors, where its extensive set of features could be easily accessed without overwhelming the user. However, in smaller devices, such as handheld gaming consoles or compact gaming laptops, the standard Game Bar interface feels cluttered and cumbersome. That is about to change.

Read more