Microsoft Defender alone?There are so many free and good hardening tools and also Firewall control
Microsoft Defender is strong, but it still lacks several key hardening and firewall capabilities that advanced users expect. HawkEye Hardening Console -Hard_Configurator (Andy Ful)-ConfigureDefender (Andy Ful)-FirewallHardening (Andy Ful) -Defender UI...
are well known, and has convinced me to use Defender, and its really good
I and everyone I know use Defender alone on default settings. 0 infections and we're talking about average users that don't really know how to recognize scam, let alone what is malicious and what not. Windows Firewall is also more than enough as it blocks internet access to all new apps by default. I'd even argue your router firewall is even more important than Windows one.
And don't be fooled,
@Andy Ful 's configurator is only as powerful as Defender/Microsoft, lets it be. His app doesn't do anything magical, just changes some settings for advanced users through registry. Something you could achieve simply by going to Group Policy Editor and changing the values yourself.
The main thing missing from MS & WD and AndyFul's/danb's tools is web protection. That is the main reason I use ESET even though I rarely get a popup.
Otherwise MS is not wrong, free is good enough if supplemented by some really good free tools like H_C or CL/WDAC.
Some kind of security DNS (Cloudflare, Quad9 or ControlD) + Google Safe Browsing and maybe some kind of security extension like Bitdefender Traffic Light if you're really paranoid, will do much better job than any antivirus software regarding web protection. And it costs you exactly 0,00€.
Security DNS servers usually use more than one threat intelligence source, along with Google Safe Browsing and Bitdefender Traffic Light, you're getting way better protection than just using one antivirus vendor.
I personally use Cloudflare Zero Trust + Google Safe Browsing in Firefox + uBlock Origin.
I have Adguard Adblocker extension( not free but inexpensive especially on sale now) its rated as good, but Google claims Ublock orgin(free) is even better
uBlock Origin is better because it gives user way more control than AdGuard extension. It also supports more syntaxes so pretty much all filter lists work in it correctly. And... it's way more efficient in resource usage than any other ad blocker out there. I'm talking about MV2 version, of course.
... and reset your router every week...
Ehm... why?
I am just a home user,I have been advised that
True 0‑days used in the wild are:
- Rare
- Expensive (hundreds of thousands to millions of dollars)
- Used by nation‑states, not random criminals
- Burned quickly once detected so I am more concerned with
- Malicious scripts
- Drive‑by downloads
- Phishing
- Malvertising
- Exploit kits targeting old, patched, or misconfigured systems
- Social engineering
- Credential theft
- Supply-chain junkware
- Abused LOLBins
- Browser extensions
- Misbehaving installers once again the advice is not my doing,I am a nave,this list is Googled
You forgot one, if not the most important thing. Hackers target companies, not you as an average Joe. They are aware you won't pay ransom, companies might not have a choice if they want to continue functioning.
10 years ago, if not more, hackers targeted indiscriminately; it didn't really matter if you were an average Joe or the company. We were equal. Nowadays, they exclusively attack companies because why waste time on you when they can earn way more money in enterprise sector. You can clearly see this in ransomware attacks. Everyone was attacked when it came, now you rarely see someone getting it and more often how some company or hospital got attacked.
Stick with your setup and don't worry. You're someone who tries to stay informed so you're ahead of average folks. Remember: stay safe, not paranoid!
Finally someone with common sense! THANK YOU!
If Microsoft says that I don't need a third-party antivirus, it's because I DO NEED IT. Microsoft's opinion is irrelevant, as is its quality of Windows updates. I will never use WD. Their opinion is so irrelevant that they themselves use third-party antivirus.
I have always used a third party AV & probably always will, that's really up to me, do I really need a £200+ ASUS router with AI etc on it when my ISP £20 supplied will do the job, maybe not, do I need cameras on my home? High quality door locks? Expensive loudspeakers? The list goes on & on .. Actually if I ran my PC how Microsoft really want me to I would not use MS at all, I have personal choices that some will & some won't agree with but they are my choices & it is my hard earned money I'm thinking - Each to their own always
Everyone is free to use whatever they want. We're just pointing out that you don't need to spend hundreds of €/£/$ yearly in order to have excellent protection. I most of the cases, free products will protect you even better than paid ones.
I'll just comment on comparison regarding ISP routers; at least in my country, 99% population uses ISP supplied router. It's fast enough and people don't mess around in router settings. This way they don't have to buy equipment, set it up themselves and ISP takes care for everything in case of any issues. The only benefit of using your own router is having total control and way more features than ISP router couldn't even provide. But still... the fact is 99% of people don't need the features my own router has; people only want fast internet access and that's what every ISP-issued router will provide.
For me, 3rd party antivirus software is simply a scam. Just look at "protection modules" that your "antivirus" software offers. There's no better example than Android antivirus apps; these apps are everything except antivirus.
www.windowslatest.com
