@SecurityWriter Individual hobbyists who develop games and other programs for Windows often ask the user to bypass SmartScreen because the dev can't afford a commercial code signing certificate. Is that also just like "disable their security software"?

I just replied to a blog comment, and I thought that I post my reply here as well:

I think that I have good reasons to be “against Avast,” having published seven articles on them so far. The security issues alone are bad enough. But Avast abused their position to collect and sell users’ browsing profiles. After they were caught they claimed the data to be anonymized, they claimed to only sell aggregated data – and they continue lying to this day, despite there being conclusive evidence to the contrary. While the company has been bought, it’s still the same people in charge. This sort of undermines any trust in them for anything related to security.

As the security of antivirus software goes, I’m not very fond of any as the articles in the “antivirus” category of my blog show. With Kaspersky it wasn’t only the security issues but also how they handled them, pushing out half-hearted fixes only for these to be circumvented shortly afterwards. McAfee and BullGuard had massive security issues stemming from being careless about security and not following best practices.

I’ve found a critical security issue in Bitdefender’s solution as well, but with them I at least had the impression that they were trying. Unfortunately, that’s currently the bar in the antivirus industry – at least trying to make their product secure.

Security-wise, one good thing about Windows Defender is that it only needs to do one job. It doesn’t need all the extra functionality as a selling argument. It doesn’t need to be a banking browser, it doesn’t need to be a phishing protection, it only needs to be an antivirus solution. It can keep a very small attack surface compared to all those antivirus suites, and so it does (yes, I checked).

Amazing. My work computer's Windows Defender is creating a constant ~40% CPU load because of CLion. CLion is smart enough to recommend adding an exception, but I'm not allowed to

Gosh, why is corporate IT such a joke?

@bedast My problem is that these people refuse to take the correct consequences and migrate away from garbage:

1. You just don't install such garbage on #Unix-esque Systems like #Linux!

2. #CrowdStrike is just yet another #Scareware #Scam.

3. The entire business model of #AntiVirus and other Scareware shouldn't exist to begin with.

4. 3rd party #BinaryBlobs on a non-#FLOSS'd kernel are just bad!

5. It should be #Microsoft's sole tesponsibility to just not allow #Rootkits / #Bootkits like that to exist eith their blessing aka. #Signature on.

6. #Windows & #WindowsServer are unbelieveably #cursed and unmaintainable mess that'll make even #Solaris 7 look clean and sleek.

7. The diversity of Linux and Unix-esque distros like #BSD's make it basically impossible to bmhave such a giant and direct effect.

8. The whole issue should've been avoided throug extensive testing because it's certainly so rampant that it would've been picked up by #QA testers.

9. The fuckedup-ness of #CensorBoot aka. "#SecureBoot" (which is insecure af - see #GoldenKeyBoot!) is the reason why this results in such catastrophic failures, whereas on #Linux one just uses #LUKS and can easily recover files.

10. Most Windows users & -#sysadmins neglect #Backups of Windows machines because there is no good way to backup them!

11. 3rd party kernel binaryblobs are #malware, regardless if "Anti-Malware" or "#AntiCheat" is the claimed functionality.

12. If I don't trust #WindowsDefender then I don't trust Windows or rather Microsoft and thus have to cease using it!

13. This shit would not have been possible under Linux!

I am getting reports of #windowsdefender flagging the #Tor application (specifically the one included in Tor Browser).
There is currently no evidence this is not a false positive, but if you are worried, you can wait until this is resolved by M$.

#WindowsDefender users: Be aware that #ControlledFolderAccess can easily be disabled by malware.
This is not a bug. It's a feature: https://learn.microsoft.com/en-us/powershell/module/defender/set-mppreference#-enablecontrolledfolderaccess

I have said before, but it bears repeating: to all the people screaming "Defender is the best", #windowsdefender is buggy. I don't know if it's the UI or the threat removal, but it has:
- detected a file sitting on disk (not an infection)
- removed it
- still keeps detecting it
This is not an infected system. This is not active malware.
If this was a real system, you want Defender to detect the threat, remove it, and be done. Instead, it took several times to even remove it (again, not an active infection, but a malware sample in a zip file).
It's also inconsistent. One part of the UI says threats are detected, but when I click, no threats are shown.

Не минуло й 5 років: Microsoft та Mozilla нарешті виправили проблему із надмірним навантаженням на CPU при спільній роботі Windows Defender й Firefox https://itc.ua/ua/novini/ne-mynulo-j-5-rokiv-microsoft-ta-mozilla-nareshti-vypravyly-problemu-iz-nadmirnym-navantazhennyam-na-cpu-pry-spilnij-roboti-windows-defender-ta-firefox/ #WindowsDefender #Microsoft #Браузери #Firefox #Mozilla #Новини #Софт

Are there any free and #ScreenReader accessible #antivirus tools for #Windows besides #WindowsDefender, #Avast and #AVG? I'm not counting #Malwarebytes here because its free version is far too crippled. #accessibility #cybersecurity

It's kinda funny. #Microsoft takes such an effort to stop you from disabling #WindowsDefender in #Windows but all it takes is a #Linux Disc and a rename of `MsMpEng.exe`

Use nim compiled language to evade Windows Defender reverse shell detection

https://infosecwriteups.com/use-nim-compiled-language-to-evade-windows-defender-reverse-shell-detection-a9268b4a3b0e

Chrome, Defender, and Firefox 0-days linked to commercial IT firm in Spain - Enlarge (credit: Getty Images)

Google researchers said on Wedn... - https://arstechnica.com/?p=1901167 #windowsdefender #exploitseller #firefox #zeroday #biz&it #chrome

This Week in Security: Through The Mouse Hole, Zoom RCE, and Defeating Defender - Windows security problems due to insecure drivers is nothing new, but this one is ... - https://hackaday.com/2021/08/27/this-week-in-security-through-the-mouse-hole-zoom-rce-and-defeating-defender/ #thisweekinsecurity #hackadaycolumns #windowsdefender #securityhacks #blockchain #news

uTorrent, qBittorrent & TransmissionTorrent wird von Windows 10 gelöscht https://tarnkappe.info/utorrent-qbittorrent-transmissiontorrent-wird-von-windows-10-geloescht/ #TransmissionTorrent #WindowsDefender #Filesharing #qBittorrent #VirusTotal #utorrent

Just a thought. Apparently the security experts say that #WindowsDefender ist completely sufficient as a anti virus software. Third party software could even open up doors that where previously closed.
If you think this is wrong information let me know ^^

---
#lerningmonday #security #antivirus #windows

#Windows Defender tiene una nueva función que protege al mismo #antivirus de alteraciones, así la puedes activar https://m.genbeta.com/p/302354?utm_source=twitter&utm_medium=social&utm_campaign=botoneramobile_AMP vía @genbeta@twitter.com #Windows10 #WindowsDefender #ciberseguridad