Microsoft discovers the need for security in Windows

Microsoft's chief software engineer, Lee Holmes, said that Windows 10 applications will now be able to connect to installed anti-virus platforms to better combat malware.Cyber ​​Security Microsoft

Holmes said the feature Antimalware Scan Interface (AMSI) Windows 10 will allow applications and services to use different anti-virus to detect malicious activities in the system memory.

As Holmes says, most anti-malware can read the signatures of suspicious activities, but if coding techniques such as XOR are used, security applications fail as malware appears benign.

Attempts to date, at best, did not detect the attacks that occurred in the memory and, at worst, they had false positive results that stopped legal proceedings.

Holmes said, "Or the antivirus engine checks files opened by the user. "If the malicious content is only in the memory, the attack may go unnoticed."

"Malicious scripts can go through various paths to hide them, but in the end they should feed the scripting engine with a simple, non-obscure code. At this point, the application can now call the new Windows AMSI API and request a scan of unprotected content.

"Any application can also call a registered anti-malware engine through AMSI and edit the submitted content."

Holmes called on all application developers to add to their applications the ability to use AMSI.

According to the expert, the new feature can be extended to "catch" malware on instant messaging platforms or gaming platforms, video plug-ins and more.

"There are so many more opportunities - this is just the beginning," he said

Note that Windows Defender, Microsoft's anti-virus platform, thanks to AMSI technology able to detect malicious scripts with XOR.

iGuRu.gr The Best Technology Site in Greecegns

every publication, directly to your inbox

Join the 2.109 registrants.

Written by Dimitris

Dimitris hates on Mondays .....

Leave a reply

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).