Windows 10 21H2 is safer against malware: follow the steps of Windows 11 thanks to the Microsoft Security Compliance Toolkit

0
23
Security
windows 10 21h2 is safer against malware: follow the steps

Microsoft continues to bet on security on its Windows platform and its latest proposal is intended to help system administrators and that they determine if the configuration they have applied is the ideal one, taking as a reference those recommended by Microsoft.

This is made possible by the Microsoft Security Compliance Toolkita set of configuration options developed based on input from both the company’s engineering teams but also from partners and customers.

Following in the footsteps of Windows 11

Security

This is a set of security options for Windows 10 21H2 created based on the work of the company’s engineers but also of users and partners. Under the name of Microsoft Security Compliance Toolkit (available at this link) it seeks to improve computer security.

With these options system administrators can compare if the configuration they have applied is the same as the one recommended by Microsoft. These are a kind of bases that the administrator on duty can edit, adapt or save in GPO backup file format and then apply them through a domain controller.

After the security settings are applied all legacy settings are removed and new configurations are added to patch the PrintNightmare remote code execution vulnerability

Also in this toolset the Edge Legacy setting has also been removed in this new baseline, a printer driver installation restriction has been added, and most importantly, tamper protection is added as a setting to enable, from default that serves to protect computers against human-operated ransomware attacks.

  • Disable virus and threat protection

  • Disable real-time protection

  • Disable behavior monitoring

  • Disable antivirus (such as IOfficeAntivirus (IOAV))

  • Disable cloud-provided protection

  • Remove security intelligence updates

  • Disable automatic actions on detected threats

This last system thus reaches Windows 10 in the update released in November after debuting in Windows 11. A system that allows blocking attack attempts by different types of malware when they try to disable the security features of the operating system by attacking Microsoft Defender Antivirus to better access sensitive data or to install more malware.

with this system any attempt to change these values ​​is prevented By resorting to the Windows Registry, PowerShell cmdlets, or Group Policy, it’s difficult for malware to take over and disable real-time antivirus protection or security updates.

These settings are now available for download through the Microsoft Security Compliance Toolkit. A pack that includes the security baselines through Group Policy Objects (GPO) reports and the scripts required to apply the settings to the local GPO.

Via | NeoWin

SEE ALSO  The new Windows 11 update makes its AI much more immersive