Microsoft has just announced that it will be tighter in allowing users to create exception folders – do not scan for viruses in specified folders.
Until now, Windows Defender computer protection allows users to select and add “excluded” folders and files – Windows Defender Exclusions. Notably, users do not need to log in with administrative rights to do this, and this inadvertently creates a huge vulnerability, allowing malicious code to hide and execute easily.
Therefore, in the upcoming update, Windows Defender will ask users to provide administrator rights to add excluded files and folders.
User behavior still matters
Currently, there are still many users who “abuse” the Windows Defender Exclusions mechanism to download pirated and cracked software – which contains a lot of dangerous malware. As a result, the user “brought” malware to his computer.
The above change of Microsoft only helps to increase security with computers at businesses and schools because most of them have been set up and given very clear permissions to avoid security risks. Meanwhile, for personal computers, user accounts are often set with administrator rights and the above change does not have much positive impact on this group of objects.
Therefore, in addition to the upgrades of computer protection software such as Windows Defender, users must always be careful with files downloaded from the internet, especially cracked files, pirated software, and unauthorized users. abuse the Windows Defender Exclusions mechanism in these cases.
