Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Tag Archives: Defender
Defender signatures cause extreme RAM usage (April 2022)
[German]Brief information for administrators of Windows systems, especially Windows Server. I have received information that the signature files for Microsoft Defender that have been delivered recently are causing problems. On some Windows Server systems, RAM usage may become unmanageable, affecting … Continue reading
Got lost in Defender? There is something like a Defender Cheat Sheet available
[German]Indiscreet question to the readers of this blog: Do you still have an overview of exactly what Microsoft is currently doing with its Defender? I confess that I got lost a long time ago and get confused when blogging because … Continue reading
New security feature allows driver block lists in Windows 10, 11 and Windows Server
[German]Microsoft is working on improving the protection of the current versions of Windows 10, Windows 11 and Windows Server 2016 and their successors against harmful drivers. For this purpose, Windows Defender Application Control (only available in Enterprise editions) or HVCI … Continue reading
Microsoft warns of (fixed) Defender spoofing vulnerability
Microsoft has sent a security alert by mail as of 30 March 2022, with a warning about a the vulnerability CVE-2022-23278. This is a spoofing vulnerability in Microsoft Defender for Endpoint, which has already been closed in Android and iOS … Continue reading
Microsoft Defender falsely detected Office updates as ransomware activity (03/16/2022)
[German]It looks like a classic false positive that Microsoft Defender pulled yesterday (Wednesday, March 16, 2022). If you suddenly had Microsoft Office updates quarantined as ransomware on your systems, you were affected by this case.
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Microsoft Defender falsely reports Trojans on Dell computers (March 2, 2022)
[German]It looks like Microsoft Defender under Windows is falsely reporting a Trojan. Affected are probably systems from Dell, where the DellSupportAssistRemediationService is criticized. This is delivered with Dell computers via their SupportAssist. After a blog reader informed me about the … Continue reading
Windows 10: Unwanted reboots due to Microsoft Defender Application Control (WDAC)
[German]Today, another short post for administrators who are using Microsoft Defender Application Control (WDAC) in a Windows 10 Enterprise environment or on Windows 11 Enterprise or Windows Server counterparts from 2016 to 2022 and are annoyed by unwanted restarts. These … Continue reading
Microsoft probably secretly fixes vulnerability in Defender under Windows
[German]Microsoft Defender attracted attention some time ago due to a vulnerability in Windows that allowed malware to query the folders left out by the antivirus. It now looks like Microsoft has quietly corrected this vulnerability, because administrator privileges are now … Continue reading
Windows Defender: Fixes, Issues and Log4j scanner false alarms
[German]At the end of the year, here is a small collection of articles about Microsoft's antivirus solution Defender. For Windows Server 2019, a problem with Defender has probably been fixed with the December 2021 updates. On the other hand, a … Continue reading
Microsoft Defender Version 1.353.1874.0 version 1.353.1874.0 incorrectly reports Emotet
[German]A brief note for administrators. Microsoft Defender reportes a PowEmotoet.SB infection has been blocked and quarantined and possibly triggers Microsoft Office? This is a false alarm, which was triggered by an update of the signature files to version 1.353.1874.0. Here … Continue reading