News

Windows 11 Wants to Save You From Phishing Attacks

But experts say it’s a question of too little, too late.

  • Microsoft will add enhanced phishing protection in a future version of Windows 11.
  • Phishing protection is part of Microsoft’s efforts to help people avoid threats on the Internet.
  • Experts applauded the change, but warned that Microsoft was only tackling a problem and the industry needed to take action to eliminate it entirely.

Fishing rods collect user data in cyberspace

Sarayuth Tanirat/Getty Images

Microsoft has been helping beef up its arsenal over the years against cybersecurity threats to its business users, and now it plans to implement some of those protections in Windows 11 for everyone.

Recently, David Weston, Microsoft’s vice president of business and operating system security, shared details of the security enhancements the company plans to introduce in upcoming Windows 11 releases, designed to protect people from common cybersecurity threats.

“Microsoft has invested in innovation to help protect our Windows customers with hardware security innovations like Secure Core PC,” Weston said in Microsoft Security write a blog. “In future versions of Windows, we will further improve security with built-in protections to help defend against sophisticated targeted phishing attacks.”

go fishing

In the post, Weston shared several measures to protect everything, including your apps, personal data and other connected devices. Many of the changes, such as personal data encryption features, are designed to protect remote workers. There are others, such as the Vulnerable Driver Block List, which helps prevent attacks that exploit known driver weaknesses.

Phishing protection (protecting users from fraudulent communications designed to trick people into extracting sensitive information such as login credentials) remains one of the most useful.

fishing hook

Calvio/Getty Images

Weston said the new protection will be implemented using Microsoft Defender SmartScreen, Microsoft’s cloud-based anti-phishing and anti-malware service. As soon as you find people entering their credentials into malicious apps or hacked websites, it will warn them right away.

In the post, Weston shared that SmartScreen helped Microsoft block more than 25 billion brute force authentication attacks in the past year alone, and was able to block more than 35.7 billion phishing emails.

†[The phishing protection] It will make Windows the first operating system in the world to have anti-phishing security built into the platform and out of the box to help people stay productive and safe. ”

“I welcome what Microsoft is adding here, but the features are rather evolutionary rather than revolutionary”

Romain Basset, Director of Customer Service, Vade Secure Phishing Detection and Protection Specialist, sees Microsoft’s latest enhancement as a positive development. However, he warned that today’s cybercriminals are mature and sophisticated, and steps taken to stop them are one step ahead.

For example, SmartScreen compares email attachments to lists of known malware. This will certainly protect users from reported malware, but new threats may not protect users,” Bassett told Lifewire via email.

biggest fish

Again, KnowBe4’s data-driven defense evangelist Roger Grimes welcomed the changes, but with some caveats. “I applaud what Microsoft has added here, but the features are quite evolutionary, not revolutionary, as it needs to be,” Grimes told Lifewire via email.

Grimes believes that because of its size, anything Microsoft does to improve computer security will have far-reaching consequences. The downside to its size, however, is that the company can’t make bold, revolutionary changes to ensure the changes it introduces don’t disrupt the user experience.

To prove his point, he cites the example of the User Account Control (UAC) component in Windows Vista, which he says has caused widespread operational disruption, forcing many to switch to other operating systems.

In fact, Grimes believes that the biggest cybersecurity problems today have to do with the way the internet is structured, and that Microsoft’s new cybersecurity features will never be able to solve them alone.

“Everything a single vendor does, whether it’s Microsoft, Google, Apple, RedHat, or any other vendor, is just a long, losing game where adversaries can launch new lines of attack faster. Vendors take years .”, shared by Grimes.

Grimes went a step further, sharing that the issue of weak cybersecurity is less technical than human. “You can’t get people in the family to agree on how to do something,” Grimes said. “So how do you get the entire global internet world to agree to do something a certain way?”

Content

Windows 11 Wants to Save You From Phishing Attacks

But it’s a case of too little, too late, experts say

Microsoft will add enhanced phishing protection in upcoming Windows 11 releases.
The phishing protection is part of Microsoft’s efforts to help people avoid the dangers on the internet.
Experts welcome the change, but warn Microsoft is only reacting to a problem, and the industry should step up to eliminate it altogether.
sarayut Thaneerat / Getty Images

The last couple of years have helped Microsoft reinforce its arsenal to combat cybersecurity threats for its business users, and it now plans to implement some of these protections in Windows 11 for everyone.

Recently, David Weston, Microsoft’s Vice President of Enterprise and OS Security, shared details about security improvements the company plans to introduce in upcoming Windows 11 releases, aiming to protect people against common cybersecurity threats.

“Microsoft has made groundbreaking investments to help secure our Windows customers with hardware security innovations like secured-core PCs,” wrote Weston on the Microsoft Security blog. “In upcoming releases of Windows, we are advancing security even further with built-in protections to help defend from advanced and targeted phishing attacks.”

Go Phish

In the post, Weston shared several protection mechanisms to protect everything, including your apps, personal data, and other connected devices. Many of the changes, such as the Personal Data Encryption feature, are designed to protect remote workers. Then there are others, such as the vulnerable driver blocklist, that’ll help prevent attacks that take advantage of known weaknesses in drivers.

Phishing protection, which guards users against fraudulent communications designed to trick people and extract sensitive information like login credentials, remains one of the most useful ones. 

calvio / Getty Images

Weston says the new protection will be rolled in with the help of Microsoft Defender SmartScreen, which is Microsoft’s cloud-based anti-phishing and anti-malware service. It’ll alert people as soon as it catches them entering their credentials into malicious applications or hacked websites.

SmartScreen helped Microsoft block over 25 billion brute force authentication attacks and was able to intercept more than 35.7 billion phishing emails in the last year alone, Weston shared in the post.

“[The phishing protection] will make Windows the world’s first operating system with phishing safeguards built directly into the platform and shipped out of the box to help people stay productive and secure,” added Weston.

“I applaud what Microsoft has added here, but these features are fairly evolutionary and not revolutionary”

Romain Basset, Director of Customer Services with phishing detection and protection experts at Vade Secure, believes Microsoft’s latest improvements are certainly a positive development. However, he cautioned that today’s cybercriminals are well established, sophisticated, and one step ahead of the measures put in place to stop them.

“SmartScreen, for example, checks email attachments against a list of known malware. This will certainly protect users against malware that has already been reported, but for those threats that are new, the user may not be protected,” Basset told Lifewire over email.

Bigger Fish

In the same vein, Roger Grimes, data-driven defense evangelist at KnowBe4, welcomed the changes but with some reservations. “I applaud what Microsoft has added here, but these features are fairly evolutionary and not revolutionary, like what is needed,” Grimes told Lifewire over email.

Grimes opined that because of its size, anything Microsoft does to improve computer security will have a far-reaching impact. The flip side to its size, however, is that to ensure the changes it introduces don’t disrupt the user experience, the company can’t make bold, revolutionary changes.

To prove his point, he cites the example of the User Account Control (UAC) component in Windows Vista, which he said caused widespread operational disturbances, forcing many people to switch to other operating systems.

In fact, Grimes believes the biggest problems with cybersecurity these days has to do with the way the internet is structured, and new Microsoft cybersecurity features will never be able to fix these by themselves.

“Everything any single vendor does, be it Microsoft, Google, Apple, RedHat, or whoever, is just one long failing game of whack-a-mole where the adversary can move far quicker into a new avenue of attack that takes vendors years to respond,” shared Grimes.

Going one step further, Grimes shared that the problem with weak cybersecurity isn’t as much technical as it is human. “You cannot get the people in your household to agree on how to do something,” opined Grimes. “So, how do you get the whole global world of the internet to agree to do something a particular way?”

#Windows #Save #Phishing #Attacks

Tài Chính Kinh Doanh

Business Finance - Synthesize economic and financial news, market price news, insurance news.... Start-up investment opportunities, business cooperation and loan guidance. #taichinhbusiness #taichinh #tintuctaichinh #tintucbaohiem Contact Info: Website: https://taichinhquangdoanh.info/ Mail: Address: 63-47 To Hien Thanh Ward, Le Dai Hanh, Hai Ba Trung, Hanoi, Vietnam

Trả lời

Email của bạn sẽ không được hiển thị công khai. Các trường bắt buộc được đánh dấu *

Back to top button