Home > Cyber News > Microsoft Defender Can No Longer Be Disabled via the Registry
CYBER NEWS

Microsoft Defender Can No Longer Be Disabled via the Registry

by   |  Last Update:  |  0 Comments  

Microsoft Defender, the security suite which guards the Windows operating system has received an important update which will prevent software and programs to disable it via the Windows Registry. To this date this functionality was present in the application’s core and was used by viruses to overcome it.




Windows Registry Can No Longer Be Abused to Stop Microsoft Defender

Microsoft has removed a function of the Microsoft Defender which allowed malware and hackers to overcome its defenses. To this date this was possible through Windows Registry editing, if certain values were edited. Now Microsoft has decided that this has been used far more for nefarious purposes than by administrators in certain situations. Microsoft Windows user could have disabled the functionality of the security suite by using a group policy setting called Turn off Microsoft Defender Antivirus. Without going through the usual menu items, the operating system automatically created a value called DisableAntiSpyware which corresponded to the current state of this setting. When this key is enabled the security programs which are installed will be disabled – this also includes any user-installed programs.

As of the KB 4052623 update this value is deemed as legacy and will be ignored thereby blocking malware and hackers who have abused this way of disabling security on compromised computers. By default in the newest versions of the Microsoft Windows operating system tamper protection is enabled by default which will strengthen overall security.

Related: [wplinkpreview url=”https://sensorstechforum.com/cve-2020-1530-emergency-update/”] CVE-2020-1530: Microsoft Releases Emergency Security Updates

Another setting which is implemented in the newer operating system installations is the automatic security startup — if a user removes their userland security program Windows Defender will automatically start in order to provide protection against viruses.

Time will tell what measures will malware developers in order to discover new methods of steal installation. Microsoft believes that these changes will greatly reduce the chances of having a virus deployed on a given system which runs the latest version of the operating system and has updated Defender definitions.

Martin Beltov

Martin graduated with a degree in Publishing from Sofia University. As a cyber security enthusiast he enjoys writing about the latest threats and mechanisms of intrusion.

More Posts

Follow Me:
Twitter

Related posts:
  1. Remove Mac Defender PUP This article will help you to remove Mac Defender totally....
  2. .Defender Files Virus (Ransomware) – How to Remove and Restore Files This article has been created in order to help you...
  3. Windows Defender Alert #0x3e7 Zepto Scam –Remove It This article has been created with the main idea to...
  4. Microsoft Defender ATP Now Available for Mac Users Windows Defender will be available for Mac business users, Microsoft...
  5. Apple Defender Security Center Mac Scam Removal What Is Apple Defender Security Center Scam Apple Defender Security...
  6. Windows Defender Browser Protection Tech Support Scam — How To Remove It This article has been created in order to explain to...
  7. Important Defender Update Scam What Is Important Defender Update Scam? If you see redirects...
  8. Defender-scan.xyz Redirects Virus Removal Guide [Free Uninstall Steps] What Is Defender-scan.xyz Redirect? Defender-scan.xyz is the name of a...

Leave a Comment

Your email address will not be published. Required fields are marked *

This website uses cookies to improve user experience. By using our website you consent to all cookies in accordance with our Privacy Policy.
I Agree