Windows Defender getting some love
Windows Defender is proving to be an excellent Anti-Virius despite it being free from Microsoft.
It was announced that it will be the only AV able to be run in a sandbox. AV needs God privileges to do its job so if any nefarious process takes control of it or it’s security context it will also gain God priveledge. Sometimes called a DoubleAgent attack. Other AV maufacturers just don’t have the intimate knowledge of Windows to make this happen.
Defender also just got a Tamper Proof setting and does not allow changes such as those use by malware to disable AV.