Windows 11 security Archives

Winsage

December 17, 2024

Windows 11 hidden toggle reveals how to turn on or off Administrator protection

Microsoft is enhancing Windows 11 security by enforcing a TPM 2.0 requirement and testing a feature called Administrator protection. This feature limits administrator rights access to specific events and is currently hidden in the Windows Security app. Users can enable it to grant temporary administrator rights, requiring a PIN or preferred authentication method. When a task needing elevated privileges is initiated, a temporary admin token is generated and deleted after the task is completed, reducing vulnerability to malware. To enable Administrator protection, users can toggle it on in the Windows Security app or use the Group Policy Editor to configure settings. Microsoft is expected to enable this feature by default in future updates.

Winsage

November 20, 2024

Windows security and resiliency: Protecting your business

Microsoft prioritizes security and is set to unveil new security advancements during Ignite 2024, including insights from a July incident and investments to enhance security measures. The Secure Future Initiative (SFI) has dedicated the equivalent of 34,000 full-time engineers to address security challenges. The upcoming November update will provide insights and actionable learnings for customers. The Windows Resiliency Initiative focuses on improving reliability, enabling more applications to run without admin privileges, implementing stronger controls over applications and drivers, and enhancing identity protection against phishing attacks. Quick Machine Recovery will allow IT administrators to execute fixes remotely, available to the Windows Insider Program in early 2025. Microsoft is evolving partnerships with endpoint security providers through the Microsoft Virus Initiative (MVI) and is developing new capabilities for security product developers. A private preview for these capabilities will be available in July 2025, and Microsoft is transitioning to safer programming languages. Windows 11 is designed to be more secure than Windows 10, requiring a hardware-backed security baseline for new PCs. Features like Windows Hello Enhanced Sign-in Security and the Microsoft Pluton security processor enhance security. Windows 11 has led to a reported 62% reduction in security incidents and a threefold decrease in firmware attacks. New features in Windows 11 address challenges such as overprivileged users, unverified apps, and insecure credentials. Administrator protection allows users to make system changes securely without persistent admin privileges. Multifactor Authentication (MFA) is emphasized, with Windows Hello serving as the built-in MFA solution. Smart App Control and App Control for Business policies ensure that only verified applications can run, while Windows Protected Print integrates with Mopria-certified devices to enhance security. Personal Data Encryption safeguards files in known folders, and Hotpatch allows critical security updates without system restarts. Zero Trust DNS restricts devices to approved domains, and Config Refresh helps maintain preferred configurations. Microsoft emphasizes collaboration with OEMs and app developers to ensure Windows is secure by design and default.

AppWizard

November 4, 2024

Valorant is winning the war against PC gaming cheaters

In 2020, multiplayer games experienced a surge in cheating during COVID-19 lockdowns, with titles like Call of Duty: Warzone, PUBG, and Destiny 2 struggling against aimbots and wallhacks. Riot Games launched Valorant with its anti-cheat system, Vanguard, which has effectively deterred cheat developers. Vanguard employs a kernel-level driver that detects unauthorized access attempts and has led to a decrease in traditional software cheats, although some cheaters have shifted to hardware solutions like direct memory access (DMA) techniques. Vanguard has also been successful in detecting and blocking suspicious hardware-level DMA attempts. Currently, triggerbots account for about 80 percent of cheats in Valorant. Vanguard was introduced to League of Legends, resulting in over 175,000 account bans. A study from the University of Birmingham indicated that Valorant has the top anti-cheat system, while other games like Call of Duty: Warzone continue to struggle. Riot is exploring collaborations with Microsoft to enhance security and may adjust Vanguard's activation based on Windows 11 features. There are no plans for Linux support due to risks of kernel manipulation. The potential rise of AI-powered cheats presents a new challenge, as AI could replicate human gameplay, complicating anti-cheat efforts.

Winsage

October 9, 2024

10 Windows 11 security settings to keep your PC safe

Windows 11 includes several built-in security features designed to protect users from threats: - Microsoft Defender: A built-in antivirus program that provides real-time protection against threats and can perform various types of system scans. - Firewall & Network Protection: Monitors incoming and outgoing traffic to prevent unauthorized access, customizable for specific applications. - App & Browser Control: Utilizes SmartScreen to check URLs and downloads against a database of known threats, blocking harmful installations. - Core Isolation: Adds protection for sensitive processes using virtualization-based security features like Memory integrity. - Ransomware Protection: Shields files and folders from unauthorized access and provides recovery options through Controlled folder access. - BitLocker Encryption: An encryption tool available on Windows 11 Pro, Enterprise, and Education editions that secures hard disk data. - Secure Boot: A BIOS-level feature that ensures Windows boots only with trusted software, preventing boot process hijacking. - Dynamic Lock: Automatically locks the device when a paired Bluetooth-enabled device goes out of range. - Windows Hello: Allows biometric authentication for logging in using facial recognition, fingerprints, or a PIN. - User Account Control (UAC): Prompts for confirmation when actions requiring administrator-level permission are initiated, helping to prevent unauthorized changes.

Winsage

August 31, 2024

Don’t use your Windows PC without using these security settings

Windows operating systems are vulnerable to malware due to their widespread use. To enhance security on a Microsoft PC, users can make adjustments without additional software. Key security settings for Windows 11 include: 1. Enable virus protection: Access the Windows Security app to review and schedule virus scans. 2. Secure your account: Use Windows Hello for facial or fingerprint recognition and enable Dynamic lock. 3. Fire up the firewall: Ensure the firewall is activated for all network types and manage app permissions. 4. Apps and browsers: Activate all toggles under Reputation-based protection and confirm settings in Exploit protection. 5. Secure boot and drive encryption: Enable Secure boot and consider BitLocker for drive encryption. 6. Check permissions: Review and adjust data access permissions in the Privacy & security settings. 7. Find my device: Enable this feature to locate a lost device and remotely lock it. 8. Update your PC: Regularly check for and install updates to maintain security. 9. Privacy protection: Use third-party applications to limit data collection and enhance privacy. These measures can significantly improve the security and privacy of a Windows PC.

Winsage

July 26, 2024

14 must-know Windows 11 security and privacy settings

- A screen lock is a must-have for laptops, and there are different options such as fingerprint, facial recognition, password, or PIN. - To make login more secure, users can enable high-security login methods like Windows Hello sign-in for Microsoft accounts. - Users can automatically lock their computer by setting up time intervals for requiring login again or enabling Dynamic lock with Bluetooth devices. - Users can skip the login and use a local account to reduce monitoring. - Users can turn off Windows Ad ID to prevent customized advertising. - Users can limit the information Windows can access to protect privacy but may lose some functionality. - Users can control app permissions for things like camera, microphone, and location through App Authorization. - Users can restrict or turn off app sharing between devices. - Users can opt out of Device Usage feature to prevent Microsoft from customizing the system and advertising to their habits. - Users can disable Microsoft 'tips' that may be perceived as advertising. - Windows 11 has built-in security features like Windows Defender for virus protection and can protect against extortion trojans. - Users can find a missing computer by enabling the Find my device feature and using account.microsoft.com/devices to locate and control the device remotely.

Winsage

June 20, 2024

Microsoft’s latest Windows 11 security update reiterates why public Wi-Fi is a hacker’s paradise

Microsoft issued a fix for a critical vulnerability affecting Windows 11 and 10 users via its June 11, 2024 security update. The flaw allows hackers to access and compromise systems as long as they are connected to the same public Wi-fi network.

BetaBeacon

April 10, 2024

Microsoft releases Windows 11 Moment 5 and fixes scores of vulnerabilities with KB5036893 update

The KB5036893 update for Windows 11 has rolled out Moment 5 features to all users, improving Snap Layouts, Copilot, Photos, Clipchamp, Widgets, and security.