Windows Defender Update

[Bill Sanderson MVP]

The press is in the business of selling newspapers (or ad space.) I'm sure
that there are daily changes in what spyware is out there. I'm not sure
that hourly, or even daily, updates to antispyware definitions are a
productive use of anyones time.

Microsoft is perfectly capable of updating quickly.

Antivirus definitions are quite a different matter--I do see those change
hourly, and I use settings that provide that level of updating on some
machines.


--

 

[Fat Kev]

The press is in the business of selling newspapers (or ad space.) I'm sure
that there are daily changes in what spyware is out there. I'm not sure
that hourly, or even daily, updates to antispyware definitions are a
productive use of anyones time.

So what you are saying is that industry experts are feeding the press
with information - false or not - which can be used in their newspapers
that can be sold to people. Right? If this is so, why has no one
challenged them for spreading scare-mongering stories? Newspapers don't
make-up stories; they report what they hear from industry experts -
people like you.

How about every 3 days or twice a week updates for spyware programs.
Spyware is the biggest threat to all of us, bearing in mind identity
theft and online fraud is increasing all because of someone brilliant
enough to circumvent M$'s security systems to steal information from
people's computers and/or planting keyloggers! Are you seriously saying
that this does not warrant regular updates?

I am amazed because M$ is on record to say that security is their first
priority in their product developments; I guess they meant second
priority - the first should be to make more money!

 

[Bill Sanderson MVP]

Key loggers definitely represent a significant threat--and if a new one were
released, I would expect an update. However--the first line of defence is
likely to be the antivirus--I recall reading an entry from the SANS ISC
handlers about a recent Windows vulnerability--they gave some details about
what happened to a user who was hit via the vulnerability, keylogger placed,
and money taken out of accounts.

What I know about such incidents is that the industry, Microsoft above
all--observes what code is being placed via the exploits, and works to get
detection out there via their network of anti-malware partners. I don't
think that Windows Defender signatures are going to be the first line of
defence--real-time protection, maybe.

Windows Defender is not a substitute for antivirus protection. I'll freely
admit myself to wondering how clear the line is between viruses and spyware,
and items which will be covered by the Malicious Software Removal tool--but
I'm clear that the intent is that those tools together will be sufficient.

I'm neither an industry pundit nor even an expert in the field of spyware,
frankly--there are others here who know far more than I do. So don't take
this as gospel of any sort--it's an opinion.
--