Microsoft Defender SmartScreen Archives

Winsage

March 8, 2025

Microsoft lists a reason why you should update to Windows 11 from 10 via clean install

Microsoft is encouraging users to transition from Windows 10 to Windows 11, which currently holds a market share of 38% compared to Windows 10's nearly 60%. In February 2024, Microsoft launched a promotional campaign to highlight the benefits of Windows 11, and by June, it aimed to dispel myths about the new operating system. The company emphasized security features, particularly the Smart App Control feature in Windows 11, which helps protect against potentially unwanted applications (PUAs). The updated support page for Windows 11 includes recommendations such as downloading apps from trusted sources, using updated antivirus software, and keeping devices up-to-date. Smart App Control requires a clean installation of Windows 11, and users upgrading from Windows 10 must perform a reset, as an in-place upgrade is not sufficient.

Winsage

February 10, 2025

Microsoft Edge tests integrating Copilot into Settings, auto-opening AI on Windows 11

Microsoft is exploring deeper integration of its Copilot feature in Edge, with potential developments including a troubleshooter in the Settings menu and automatic sidebar activation upon browser launch on Windows 10 and 11. An "Ask Copilot" button may also be introduced in the Settings app for user assistance. References suggest Copilot could activate with new tabs or browser launches. Additionally, Edge has launched an AI-driven "Scareware Blocker" in version 133 for Windows 11 to protect users from online scams by blocking harmful sites in real-time. This feature is expected to improve over time and complements Microsoft Defender SmartScreen Protection.

Winsage

October 19, 2024

Google Reveals New Chrome Update—Microsoft Warns Windows Users To Change Your Browser

Google's Chrome holds a 65% market share and faces potential break-up actions from the Department of Justice. Microsoft is promoting its Edge browser to Windows users, highlighting enhanced security features through Microsoft Defender SmartScreen. Microsoft encourages enterprises to adopt Edge, suggesting that employees may also use it at home, threatening Chrome's user base. In response, Google has launched a campaign to reassure its 3 billion Chrome users about its security measures, emphasizing its innovations and commitment to user safety. Google is also addressing privacy concerns related to tracking cookies and plans to introduce an opt-in tracking mechanism, while Microsoft is developing the “Privacy-Preserving Ads API” for Edge. Both companies are focusing on security and privacy as key competitive factors. Chrome has recently updated to version 130.0.6723.58/.59, and users are advised to restart their browsers after the update for optimal security.

Winsage

October 12, 2024

Microsoft Warns Millions Of Windows Users—Change Your Browser As New Attacks Underway

Microsoft has issued a warning to Windows users about increasing attacks that exploit legitimate file hosting services, using tactics to evade security measures. These attacks involve fraudulent websites designed to harvest user credentials, prompting Microsoft to recommend the use of Microsoft Edge, which integrates with Microsoft Defender SmartScreen to block malicious sites. Microsoft previously advised Chrome users to update or stop using the browser due to a zero-day vulnerability, encouraging a shift to Edge. The attacks leverage trusted file-sharing platforms like Dropbox and OneDrive, deceiving users into opening malicious files. Microsoft emphasizes using Edge with conditional access policies and Microsoft Defender for enhanced security. Additionally, Microsoft is developing a privacy-preserving ads API for Edge, aiming to improve user privacy while addressing the challenges of third-party cookie tracking. This new API is currently in limited preview and requires manual activation in specific regions.

Winsage

October 9, 2024

Microsoft Warns Millions Of Windows Users—Change Your Browser To Stop New Attacks

Microsoft has issued a warning to Windows users about an increase in sophisticated attacks that use legitimate file hosting services to evade security measures. These attacks often involve fraudulent websites designed to steal user credentials, exploiting trusted platforms like Dropbox, SharePoint, and OneDrive. Microsoft recommends using Microsoft Edge, which can automatically block malicious websites through Microsoft Defender SmartScreen. The company has also advised enterprises to promote Edge and implement conditional access policies to enhance security. Recent trends show attackers manipulating enterprise security systems by using files with restricted access and view-only settings to deliver phishing emails. The ultimate goal of these attacks is typically the theft of organizational credentials for financial gain.

Tech Optimizer

October 4, 2024

Session Hijacking Is Back: MFAs No Longer Safe

Session hijacking has evolved to bypass multi-factor authentication (MFA) checks, with Microsoft reporting 147,000 token replay attacks in 2023, a 111% increase from the previous year. Google noted that session cookie attacks now rival traditional password-focused cyberattacks. Modern session hijacking techniques include Adversary-in-the-Middle (AitM) attacks, Browser-in-the-Middle (BitM) attacks, and infostealers. Infostealers can target all session cookies and credentials stored in a user's browser and were responsible for 43% of malware detected in 2023, according to the 2024 Sophos Threat Report. Advanced malware can evade detection by Endpoint Detection and Response (EDR) systems. Effective prevention measures include keeping personal information private, using robust antivirus and EDR solutions, and implementing strong in-app controls.

Winsage

September 27, 2024

Microsoft reveals how Windows 10 and Windows 11 block keyloggers

In the early 2000s, third-party antivirus solutions dominated Windows operating system security until Microsoft introduced Security Essentials in 2009, which evolved into a comprehensive security product. With the launch of Windows 8, Security Essentials transitioned to Windows Defender, which further developed into a suite of security products for Windows 10 and 11. Microsoft Defender Antivirus protects users against threats like keyloggers and screen scrapers using artificial intelligence, machine learning, and the Microsoft Intelligent Security Graph. Key protection mechanisms include Secure Boot, Trusted Boot, and Measured Boot for system verification, multiple detection engines for malware identification, Tamper Protection to prevent malware from altering security features, and Microsoft Defender SmartScreen to block malware downloads. Microsoft recommends using Microsoft Defender for Endpoint for enhanced security.

Winsage

August 5, 2024

Researchers Uncover Flaws in Windows Smart App Control and SmartScreen

Significant design vulnerabilities have been identified in Microsoft's Windows Smart App Control (SAC) and SmartScreen, which could allow threat actors to infiltrate systems without triggering security alerts. Smart App Control, introduced with Windows 11, aims to block untrusted applications by checking their signatures, while SmartScreen assesses the safety of websites and applications through a reputation-based system. When Smart App Control is active, it disables SmartScreen, raising security concerns. Elastic Security Labs reported that both features have flaws that enable initial access with minimal user interaction. Attackers can bypass these protections using methods such as obtaining legitimate Extended Validation (EV) certificates, reputation hijacking, reputation seeding, reputation tampering, and LNK stomping. Researchers emphasized that while reputation-based systems provide some protection, they are not foolproof and should not be solely relied upon for security.

Tech Optimizer

July 8, 2024

Is Windows 11’s built-in antivirus enough for normal people?

Windows 11 comes with built-in antivirus and security features such as Microsoft Defender Antivirus, SmartScreen, and Windows Firewall. These features provide real-time protection, ransomware protection, and network traffic filtering. While these features are effective for everyday users, additional security measures may be needed for those who frequently visit shady websites, download unsolicited files, or click on links in emails or social media messages. Paid antivirus suites offer more comprehensive protections and additional features like VPNs, password managers, and identity protection.