Windows Defender getting some love

Windows Defender is proving to be an excellent Anti-Virius despite it being free from Microsoft.

It was announced that it will be the only AV able to be run in a sandbox. AV needs God privileges to do its job so if any nefarious process takes control of it or it’s security context it will also gain God priveledge. Sometimes called a DoubleAgent attack. Other AV maufacturers just don’t have the intimate knowledge of Windows to make this happen.

Defender also just got a Tamper Proof setting and does not allow changes such as those use by malware to disable AV.

sduncan