built-in protection Archives

Tech Optimizer

May 12, 2025

Defendnot — A New Tool That Disables Windows Defender by Posing as an Antivirus Solution

Defendnot is a tool that disables Windows Defender by using the Windows Security Center (WSC) API, presenting itself as a legitimate antivirus solution. It was created by a developer named “es3n1n” and follows the removal of a previous tool called “no-defender.” The tool engages directly with WSC, which disables Windows Defender when third-party antivirus software is installed to avoid conflicts. Defendnot was developed through reverse engineering of the WSC service and involves understanding how WSC verifies processes. It registers a phantom antivirus product using COM interfaces and undocumented Windows APIs, leading Windows to disable its built-in protection. The tool requires administrative privileges to operate and adds itself to autorun to maintain its functionality after a reboot. Security experts express concern about its potential misuse by malware authors, while it also provides insights into vulnerabilities in Microsoft’s security architecture.

Tech Optimizer

February 18, 2025

Microsoft Defender vs. McAfee: Features, Pricing, Pros & Cons

eSecurity Planet maintains editorial independence and may earn revenue from partner links. Microsoft Defender, a free built-in antivirus for Windows, offers minimal configuration and supports Windows 10 and 11, while McAfee, which holds a 12.47% share of the global antivirus market, provides extensive privacy monitoring and data protection across multiple platforms (Windows, Mac, Android, iOS) with various pricing plans ranging from .99 to 9.99. Microsoft Defender supports a single device and includes features like real-time threat protection, parental controls, and a firewall, but lacks advanced features like VPN and identity theft monitoring. McAfee offers a wider range of features, including a VPN, identity theft monitoring, and data cleanup, making it a more comprehensive solution despite its higher cost. Microsoft Defender has an overall rating of 3.8/5, while McAfee rates 4.4/5, excelling in customer support with multiple channels, including live chat and phone support. Microsoft Defender is suitable for users on a budget, while McAfee is better for those needing robust privacy and identity protection. Alternatives to consider include Norton, Bitdefender, and Malwarebytes.

AppWizard

February 4, 2025

Google Relies On AI-Assist Threat Detection to Keep Android Safe

Google blocked 2.36 million apps from being published in 2024 due to violations of Google Play policies and banned over 158,000 developer accounts for attempting to distribute harmful applications. The company prevented 1.3 million apps from gaining excessive access to users' sensitive data. Over 92% of human reviews for harmful apps were AI-assisted, allowing for quicker and more accurate actions. Google implemented new requirements for developers to enhance transparency regarding data handling and introduced a "Data deletion" option for apps. Over 91% of app installations on the Google Play Store utilized the latest protections from Android 13 or newer. Google Play Protect scanned more than 200 billion apps daily and identified over 13 million new malicious apps from outside Google Play in 2024.

Winsage

October 9, 2024

10 Windows 11 security settings to keep your PC safe

Windows 11 includes several built-in security features designed to protect users from threats: - Microsoft Defender: A built-in antivirus program that provides real-time protection against threats and can perform various types of system scans. - Firewall & Network Protection: Monitors incoming and outgoing traffic to prevent unauthorized access, customizable for specific applications. - App & Browser Control: Utilizes SmartScreen to check URLs and downloads against a database of known threats, blocking harmful installations. - Core Isolation: Adds protection for sensitive processes using virtualization-based security features like Memory integrity. - Ransomware Protection: Shields files and folders from unauthorized access and provides recovery options through Controlled folder access. - BitLocker Encryption: An encryption tool available on Windows 11 Pro, Enterprise, and Education editions that secures hard disk data. - Secure Boot: A BIOS-level feature that ensures Windows boots only with trusted software, preventing boot process hijacking. - Dynamic Lock: Automatically locks the device when a paired Bluetooth-enabled device goes out of range. - Windows Hello: Allows biometric authentication for logging in using facial recognition, fingerprints, or a PIN. - User Account Control (UAC): Prompts for confirmation when actions requiring administrator-level permission are initiated, helping to prevent unauthorized changes.