Windows Defender Exploit Guard

What is Windows Defender Application Control?

Posted on September 7, 2018 by Russell Smith

In this blog post, Russell looks at the story behind Windows Defender Application Control in Windows 10.

The post What is Windows Defender Application Control? appeared first on Petri.

Continue reading What is Windows Defender Application Control?→

Hunting down Dofoil with Windows Defender ATP

Posted on April 4, 2018 by Windows Defender ATP

Dofoil is a sophisticated threat that attempted to install coin miner malware on hundreds of thousands of computers in March, 2018. In previous blog posts we detailed how behavior monitoring and machine learning in Windows Defender AV protected custome… Continue reading Hunting down Dofoil with Windows Defender ATP→

Now you see me: Exposing fileless malware

Posted on January 24, 2018 by Windows Defender ATP

Attackers are determined to circumvent security defenses using increasingly sophisticated techniques. Fileless malware boosts the stealth and effectiveness of an attack, and two of last years major ransomware outbreaks (Petya and WannaCry) used fileles… Continue reading Now you see me: Exposing fileless malware→

US-CERT Warns of ASLR Implementation Flaw In Windows

Posted on November 20, 2017 by Tom Spring

US-CERT is warning of a vulnerability in Microsoft’s implementation of Address Space Layout Randomization that affects Windows 8, Windows 8.1 and Windows 10. Continue reading US-CERT Warns of ASLR Implementation Flaw In Windows→

Windows Defender Exploit Guard Replaces EMET in Fall Creators Update

Posted on October 5, 2017 by Russell Smith

In this Ask the Admin, Russell Smith looks at the technical details of how Windows Defender Exploit Guard will replace the Enhanced Mitigation Experience Toolkit (EMET) in Windows 10.

The post Windows Defender Exploit Guard Replaces EMET in Fall Creators Update appeared first on Petri.

Continue reading Windows Defender Exploit Guard Replaces EMET in Fall Creators Update→