Skip to main content

Microsoft’s latest Windows 10 Insider Preview release all about fighting malware

Windows Timeline
Image used with permission by copyright holder

Microsoft’s latest Windows 10 build 17672 is now available for download, and there’s one big new change in this version. Build 17672 is a Windows Insider preview build available to those who registered for the Fast ring or for Skip Ahead releases, so the software is in testing and isn’t finalized yet for general consumers. There are a number of improvements introduced in this build, but the biggest change is that third-party antivirus software is now handled differently on the platform.

This latest security change stipulates that antivirus software — like those made by Norton Symantec, McAfee, and Kaspersky Lab — must run as a protected process. Microsoft announced system protected processes beginning with the release of Windows 8.1 as a security measure to defend against malicious attacks on system-critical components.

Recommended Videos

“The protected process infrastructure only allows trusted, signed code to load and has built-in defense against code injection attacks,” Microsoft said at the time. “After the anti-malware services have opted into the protected service mode, only Windows signed code or code signed with the anti-malware vendor’s certificates are allowed to load in that process.”

Please enable Javascript to view this content

On build 17672 this means that the default Windows Defender Antivirus that ships with Windows 10 will be enabled and run alongside any antivirus product that has not registered as a protected process. “Products that have not yet implemented this will not appear in the Windows Security UI, and Windows Defender Antivirus will remain enabled side-by-side with these products,” Microsoft detailed in a blog post.

Microsoft is allowing testers to disable this behavior with the creation of a registry key, but this workaround will be removed closer to the consumer release of the next big Windows 10 update.

Other notable fixes include improvements to the Microsoft Edge browser, an update to the recently released Timeline feature that allows users to cycle through tabs, and low battery alerts for compatible Bluetooth-connected devices. Users of Microsoft’s Windows Mixed Reality experience may want to avoid this build for now, as there are a few known issues with this release. Motion controllers may not be recognized in some apps, and your headset may display a black screen.

If you’re looking for malware defense — in addition to or in lieu of Windows Defender — be sure to check out our list of the best free antivirus software. We also have rankings for the best free antivirus tools for MacOS users if you’re in the Apple camp.

Chuong Nguyen
Silicon Valley-based technology reporter and Giants baseball fan who splits his time between Northern California and Southern…
Microsoft just released its ‘unified gateway to Windows’ for Mac
The Surface Pro 11 on a white table in front of a window.

Microsoft has launched a new Windows App for Mac that unifies the remote access Windows experience. There are even versions for iOS, iPadOS, and web browsers, with an Android version in public preview mode.

Windows App: Your gateway to Windows on any device

Read more
There’s a scary new way to undo Windows security patches
Windows 11 logo on a laptop.

Security patches for Windows are essential for keeping your PC safe from developing threats. But downgrade attacks are a way of sidestepping Microsoft's patches, and a security researcher set out to show just how fatal these can be.

SafeBreach security researcher Alon Leviev mentioned in a company blog post that they'd created something called the Windows Downdate tool as a proof-of concept. The tool crafts persistent and irreversible downgrades on Windows Server systems and Windows 10 and 11 components.

Read more
Microsoft cracks down on Windows 11 upgrade requirements
A photo of the Sensel Click Composer Software running on Windows 11

With just a little more than a year left before Windows 10 hits its end-of-life, Microsoft has been busy encouraging people to upgrade to Windows 11. One of the hurdles with getting PCs upgraded to Windows 11, though, are the hardware requirements -- and now they're cracked down on harder.

A recent beta build of Windows 11 has patched the well-used "setup.exe /product server" workaround that allowed you to completely bypass the system requirements check and run Windows 11 on a non-compliant machine -- in other words, a machine without TPM 2.0.

Read more