Microsoft continues to advocate for users to adopt the latest version of Windows or at least select a version that remains eligible for monthly security updates. This push is not merely about new features; it is also a proactive measure against emerging security threats and vulnerabilities. However, the process can become complicated when dealing with fresh installations using older Windows ISOs.
The challenge with these older ISOs lies in their inherent vulnerabilities. As time passes, the likelihood of these images exposing systems to security risks increases. This is primarily due to the absence of the latest security updates, leaving users vulnerable until they either download the updates via Windows or apply them directly to the ISO. Additionally, older images often come equipped with outdated antimalware software binaries. In response to this issue, Microsoft has introduced a new update for Microsoft Defender, specifically designed for Windows installation images.
Latest Microsoft Defender binaries will improve the security of old Windows images
Older Windows ISOs are bundled with outdated Microsoft Defender binaries, which fail to provide optimal protection against threats until they undergo what Microsoft refers to as “the first anti-malware software update.” The latest Microsoft Defender update aims to bridge this protection gap during new deployments, eliminating the risk of temporarily compromising your PC while the antimalware software installs.
This recent Defender update encompasses the latest Microsoft Defender software binaries, essential not only for the built-in antivirus tool but also beneficial for any additional security solutions you may have, as outlined in Microsoft’s support documentation. The updated antimalware packages must be applied offline to WIM and VHD Windows installation files for the following versions:
- Windows 11
- Windows 10 (Enterprise, Pro, and Home editions)
- Windows Server 2022
- Windows Server 2019
- Windows Server 2016
This latest Defender package updates both the anti-malware client and the anti-malware engine, which are critical components utilized by Microsoft Defender Antivirus in Windows 11. The package size varies depending on the platform: it is 78.2 MB for ARM64, while x86 and x64 systems require 128 MB and 132 MB, respectively. These packages are readily available for download on the support website.
To implement this update, users must operate a 64-bit version of Windows 10 or later and have PowerShell 5.1 or later installed, along with the “Microsoft.Powershell.Security” and “DISM” modules. Microsoft provides a straightforward guide on its website to assist in applying the package to your Windows installation images. It is advisable to adhere to a routine of updating every three months to maintain optimal security.
