14 DAY TRIAL // Microsoft today announced tamper protection in Microsoft Defender ATP, a new feature whose purpose is to block others and malware infections from changing the security settings of your device.
First introduced in December as part of the Windows Insider program, tamper protection is available for both home and enterprise users installing the upcoming Windows 10 version 1903.
The feature will be turned on by default for home users when Windows is installed. When upgrading from a previous version of Windows and cloud-based protection is enabled, tamper protection is also activated to secure your device.
Managing this feature is easy from the Windows 10 Settings app, while enterprise users need to head over to the Intune management portal.
Coming to users in Windows 10 version 1903
Tamper protection makes sure the real-time antivirus scanning isn’t disabled, while also protecting the cloud-based engine and IOAV, the feature that powers the detection of suspicious files online. Microsoft says tamper protection also covers behavior monitoring, which was specifically implemented to keep an eye on the active processes.
Enterprise users are provided with tamper protection as an opt-in feature, and the software giant says that enterprise management will be rolled out soon.
“For enterprise customers (such as those with a Microsoft Defender ATP license), this feature will be opt-in and can only be managed from the Intune management console. Local device admin users will not be able to change the setting. This ensures that even malicious apps – or malicious actors – can’t locally override the setting,” the company explains.
Windows 10 version 1903 is projected to be finalized this month and then released to all users in April. The rollout will take place in stages as Microsoft wants to discover issues and fix them before they hit a larger number of devices. There’s no word as to whether the RTM has already been signed off or not.