Danny Weber
Learn how to enhance Microsoft Defender by enabling hidden features like Controlled Folder Access, Core Isolation, and Tamper Protection to safeguard against ransomware and malware.
The built-in antivirus Microsoft Defender — formerly known as Windows Defender — is considered a basic security tool in Microsoft Windows, but its capabilities aren't always enough to fully protect a system.
ZDNet contributor Lance Whitney notes that while Defender itself is a decent solution, many important features are turned off by default, which reduces the overall security level.
First, the expert recommends looking at the Controlled Folder Access feature. It protects data from ransomware but can cause inconvenience because it sometimes blocks even legitimate applications — that’s why it isn’t enabled out of the box.
Also disabled by default is protection related to preventing malware from taking over the system. This is available under Core Isolation. Enabling it might lead to compatibility issues with some drivers, which explains the cautious approach from developers.
Whitney separately advises activating the feature to block potentially unwanted programs. Such apps aren’t always viruses but can slow down the system or change its behavior.
Another important setting is Tamper Protection. It prevents third-party software from altering system files and settings, which is especially crucial for defending against stealth attacks.
Overall, despite having a built-in antivirus, users are advised to manually check their security settings and, if necessary, enable additional layers of protection to reduce risks.
© RusPhotoBank