Microsoft announces Windows Defender Advanced Threat Protection

Forum Moderators: open

Message Too Old, No Replies

Microsoft announces Windows Defender Advanced Threat Protection

uses cloud to detect breaches by analyzing system behavior

bill

9:38 pm on Mar 1, 2016 (gmt 0)

http://arstechnica.com/information-technology/2016/03/windows-defender-advanced-threat-protection-uses-cloud-power-to-figure-out-youve-been-pwned/ [arstechnica.com]

Technology Lab / Information Technology
Windows Defender Advanced Threat Protection uses cloud power to figure out you’ve been pwned

Attacks that depend on social engineering rather than software flaws, as well as those taking advantage of unpatched zero-day vulnerabilities, can evade traditional anti-malware software. Microsoft says that there were thousands of such attacks in 2015 and that on average they took 200 days to detect and a further 80 days to contain, giving attackers ample time to steal data and incurring average costs of $12 million per incident. The catchily named Windows Defender Advanced Threat Protection is designed to detect this kind of attack, not by looking for specific pieces of malware, but rather by detecting system activity that looks out of the ordinary.

ergophobe

6:15 pm on Mar 14, 2016 (gmt 0)

So this is meant to be a free competitor to the offerings that others have already, or something new?

Honestly, I've been using Windows Defender on pre-Win10 systems (downloaded and installed manually) for a fair while, ever since an older machine of mine was bogged down by every other AV software I tried. It's been doing well for me so far, but it sounds like I would need to upgrade to Win10 to get this

Keen to avoid Windows 7 becoming "the new Windows XP," the company is being rather more aggressive in applying pressure on users to upgrade to Windows 10 sooner rather than later.

tangor

8:27 am on Mar 15, 2016 (gmt 0)

This interconnected scans kind of thing outside my system stuff just gives me the creeps. Tried that Win10 thing and dialed back Muy rápido. I'll wait a bit and see what happens (meanwhile, MS Security Essentials does a dang fine job!)

ergophobe

4:15 pm on Mar 15, 2016 (gmt 0)

Ah tangor, you remind me - I am using Security Essentials too.... I knew what I was saying didn't seem quite right.

bill

1:04 am on Mar 17, 2016 (gmt 0)

This is more of an enterprise level product. Unless you're running a full network domain I don't think this one would help you. It sounds like a tool for sys admins.

On your personal Windows machines you'd probably be using Security Essentials if you're running Vista or Win7. However, there was a Windows Defender available for XP and Vista, and now it's in Win10. Win8 has its own security system that I forget the name of. Confused? I can understand why.

tangor

2:50 am on Mar 17, 2016 (gmt 0)

The earlier version of Win Defender for XP and Vista did not work on all machines, hence the MS Security Essentials. And yes, it STILL remains confusing!

ergophobe

8:47 pm on Mar 17, 2016 (gmt 0)

Hmmm... that might explain my confusion... I had MSE for Vista, but on Win8 it's more or less the same thing, but called Windows Defender
[microsoft.com...]

bill

8:02 am on Mar 19, 2016 (gmt 0)

Yes. Microsoft's naming can be a huge source of confusion.
When my father told me he was getting a Microsoft Surface I was glad to see that it was just a laptop, instead of the original coffee table size device that was called Microsoft Surface [en.wikipedia.org...]

ergophobe

6:32 pm on Mar 20, 2016 (gmt 0)

I know. Every time I have a question like this I have to Live for the answer. Or Bing for it. Or something.