Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Security
General Security Discussions
Windows Defender Delay Protection.
Message
<blockquote data-quote="Andy Ful" data-source="post: 887769" data-attributes="member: 32260"><p><strong>Windows Defender Delay Protection is probably stronger than any antivirus Advanced Threat Protection (also that used in Microsoft Defender ATP in Enterprises). WDDP has an advantage that it can be easily understood and applied in a few minutes by most of the average users.</strong></p><p></p><p>So, let's forget about AV battles, VirusTotal, and online Sandbox analyses. One does not need to waste time for a layered security and overkill setups. There is no need to install new security after each month and reinstall broken Windows two or more times a year. All of this can be solved in practice by using WDDP.</p><p></p><p>Yes, this would be too good to be true. Although the title is a kind of joke (Microsoft did not apply anything like WDDP), there exists a very easy procedure to avoid most of the 0-day malware, which is especially useful for Windows Defender. So, what is a Delay Protection? Simply, the user should execute/open the new files with one-day-delay. Why it can be useful? Because after one day, the malware is not 0-day anymore.</p><p>But, why it could be especially useful for WD? Because WD has got recently advanced postinfection behavior detection. It means that the user is well protected against the 0-day malware if he/she is not among the first few victims who use WD. In many cases, the postinfection detections are made within a few minutes after infecting the first victim. But often, the first victim who uses WD can be infected several hours after pushing the malware in the wild - that is why the one day delay is often necessary.</p><p>The Delay Protection will work well for other good AVs too when they use fast signatures instead of postinfection detections.</p><p></p><p>It is strange that such a simple and effective solution is not widely accepted by users. Are you ready for WDDP?<img src="data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" class="smilie smilie--sprite smilie--sprite109" alt=":)" title="Smile :)" loading="lazy" data-shortname=":)" /></p></blockquote><p></p>
[QUOTE="Andy Ful, post: 887769, member: 32260"] [B]Windows Defender Delay Protection is probably stronger than any antivirus Advanced Threat Protection (also that used in Microsoft Defender ATP in Enterprises). WDDP has an advantage that it can be easily understood and applied in a few minutes by most of the average users.[/B] So, let's forget about AV battles, VirusTotal, and online Sandbox analyses. One does not need to waste time for a layered security and overkill setups. There is no need to install new security after each month and reinstall broken Windows two or more times a year. All of this can be solved in practice by using WDDP. Yes, this would be too good to be true. Although the title is a kind of joke (Microsoft did not apply anything like WDDP), there exists a very easy procedure to avoid most of the 0-day malware, which is especially useful for Windows Defender. So, what is a Delay Protection? Simply, the user should execute/open the new files with one-day-delay. Why it can be useful? Because after one day, the malware is not 0-day anymore. But, why it could be especially useful for WD? Because WD has got recently advanced postinfection behavior detection. It means that the user is well protected against the 0-day malware if he/she is not among the first few victims who use WD. In many cases, the postinfection detections are made within a few minutes after infecting the first victim. But often, the first victim who uses WD can be infected several hours after pushing the malware in the wild - that is why the one day delay is often necessary. The Delay Protection will work well for other good AVs too when they use fast signatures instead of postinfection detections. It is strange that such a simple and effective solution is not widely accepted by users. Are you ready for WDDP?:) [/QUOTE]
Insert quotes…
Verification
Post reply
Top
