- Jul 27, 2019
- 13
Windows Defender VS Ransomware, Controlled folder access feature tested
- Thread starter ksgsystem
- Start date
It is advised to take all reviews with a grain of salt. In extreme cases some reviews use dramatization for entertainment purposes.
- Oct 1, 2019
- 1,120
Briefly fast forwarded the video, is it correct that 1 (Jenkins) managed to bypass protected folders?
- Jul 27, 2019
- 13
Summary of video:
4:30 - Buran ransomware not blocked by Defender
4:30 - Buran ransomware not blocked by Defender
- Desktop items encrypted (Desktop was not added to Protected folders in this test).
- Folders in the Protected folders list were safe/untouched.
- Jenkins ransomware runs in the background as the tester continues with the rest of the test.
- 13:50 - Jenkins ransomware bypasses Controlled Folder Access and encrypts everything.
- Dec 23, 2014
- 8,512
Hi,
Thanks for testing. The Buran and Jenkins are interesting ransomware samples. It is really hard to test the WD Controlled Access feature, because most samples are detected/blocked by WD local signatures and cloud protection.
What was the last Windows Update on the tested machine?
If I correctly recall, the Buran ransomware depends on Windows exploits.
I am not sure about Jenkins ransomware. Is it related to the Jenkins servers vulnerabilities?
Do you know something more about those two ransomware samples?
Thanks for testing. The Buran and Jenkins are interesting ransomware samples. It is really hard to test the WD Controlled Access feature, because most samples are detected/blocked by WD local signatures and cloud protection.
What was the last Windows Update on the tested machine?
If I correctly recall, the Buran ransomware depends on Windows exploits.
I am not sure about Jenkins ransomware. Is it related to the Jenkins servers vulnerabilities?
Do you know something more about those two ransomware samples?
Last edited:
manchesterunited
Level 1
- Feb 8, 2020
- 46
people are now actively working to discredit your test
- Dec 23, 2014
- 8,512
I would propose to change the author's comment under the video on the video website:
"Let's review the How effective is Controlled folder access Feature in Windows Defender"
It is hard to see how effective is Controlled folder access on 2 samples.
The author does not claim that WD is better (or worse) than other AVs and the results are similar to other tests that were already discussed on MT. This is a standard demonstration test with two interesting ransomware samples.
"Let's review the How effective is Controlled folder access Feature in Windows Defender"
It is hard to see how effective is Controlled folder access on 2 samples.
The author does not claim that WD is better (or worse) than other AVs and the results are similar to other tests that were already discussed on MT. This is a standard demonstration test with two interesting ransomware samples.
- Jan 11, 2020
- 220
manchesterunited
Level 1
- Feb 8, 2020
- 46
every single time someone posts something about Windows Defender or Windows Security
certain individuals some running to the thread and immediately start to pick the test apart and belittle it
that is a blatant effort to discredit
it is widely-known at this point across the web on different security forums that this forum has become a Windows Security echo chamber
- Mar 29, 2018
- 7,613
That's pure nonsense!
In fact, there are other forums that recommend Windows Defender. People use what they like, read what they like and believe what they like.
manchesterunited
Level 1
- Feb 8, 2020
- 46
no it isn't
just look at every single thread here at MT where a test of Windows Defender has poor results
it's the same people that show up to discredit the test
other forums do not have members who actively defend Windows Security to no end
they are not Windows Security echo chambers
MT certainly is and it is discussed on other forums
look up the definition of "echo chamber"... it does not mean that the only discussed or promoted is one single thing
however, it does mean that certain beliefs and opinions keep getting expressed and the group (the hive) will focus
around those beliefs and opinions - and well - that sure does happen here quite a bit when it comes to Windows
Security
so, yes, this place is a Windows Security echo chamber
Last edited:
@manchesterunited I don't see anyone trying to discredit this test in this thread. I only see people wanting to understand how/why Windows Defender wasn't able to block those two samples. It's a good question. Understanding what happened here will hopefully give us and others insight on what needs to be improved in Windows Defender or what it is lacking.
I enjoyed this video.
I enjoyed this video.
manchesterunited
Level 1
- Feb 8, 2020
- 46
having knowledge about what needs to be improved - really there is nothing you can do about it
only Microsoft can fix Windows Security
I am talking about the trend of every single time there is a thread about Windows Security where it is shown in a poor light
there are certain individuals that run to those threads and always have something to say or suggest in a way that undermines the test
there are threads here that span many pages because of back-and-forth about the validity of tests involving Windows Defender
at this point there are many such instances of this behavior here at MT
the perception out there is that his place is a Windows Security echo chamber
and it is
Thanks, was lazy to watch it
@manchesterunited you are badmouthing, WD is da best, and invincible, it locks the system while online, all those biased failure youtests and criticizing posts are part of a larger conspiracy orchestrated by sponsored agents of 3rd party vendors whose opinion doesn't matter because they knows nothing about coding!!!!
manchesterunited
Level 1
- Feb 8, 2020
- 46
Thanks, was lazy to watch it
@manchesterunited you are badmouthing, WD is da best, and invincible, it locks the system while online, all those biased failure youtests and criticizing posts are part of a larger conspiracy orchestrated by sponsored agents of 3rd party vendors whose opinion doesn't matter because they knows nothing about coding!!!!
agents !
non-coders !
hah... we can code... even using laptops with dead batteries... get lost losers
- Mar 29, 2018
- 7,613
MT must be a VoodooShield chamber, and Kaspersky, etc... Is no place safe from these evil cabals?
NO !Is no place safe from these evil cabals?
There is no such things as good criticisms, you are with us or against us !!!
If your words are against my opinion, you are obviously a haters trying to discredit me !!!
Vade Retro Satanas !!!
- Jul 27, 2019
- 13
Exactly, perfect summary
- Jul 27, 2019
- 13
Windows 10 is up to date, i forgot to show it on test.. jenkins detected by almost all famous av vendors not by defenderHi,
Thanks for testing. The Buran and Jenkins are interesting ransomware samples. It is really hard to test the WD Controlled Access feature, because most samples are detected/blocked by WD local signatures and cloud protection.
What was the last Windows Update on the tested machine?
If I correctly recall, the Buran ransomware depends on Windows exploits.
I am not sure about Jenkins ransomware. Is it related to the Jenkins servers vulnerabilities?
Do you know something more about those two ransomware samples?
manchesterunited
Level 1
- Feb 8, 2020
- 46
MT must be a VoodooShield chamber, and Kaspersky, etc... Is no place safe from these evil cabals?
an echo chamber can gravitate around a number of points of view or set of behaviors
evil cabals ?
oh, you mean someone who has an opinion different than your own
um, the answer is definitely "no"
Similar threads
