Is Windows Defender enough Reddit 2022

Hi everyone,

Hope you can help out.

At the moment we're doing a transistion from Sophos to Microsoft Defender and want to block USB's, apart from a selected few (basically what Sophos does with ease!).

I came across this blog - https://thewindowsupdate.com/2021/12/16/block-usb-in-microsoft-defender-for-endpoint-and-intune/ & went through it all. However I'm still unable to get this to work.

In this scenario, I want to block all USB's apart from the Toshiba USB in the 3rd XML file below (purely for testing to begin with).

This is how it shows on Intune -

Intune | Profile Setting

These are each of the xml files -

1. <PolicyRule Id="{c544a991-5786-4402-949e-a032cb790d0e}">
   <!-- ./Vendor/MSFT/Defender/Configuration/DeviceControl/PolicyRules/%7bc544a991-5786-4402-949e-a032cb790d0e%7d/RuleData -->
   <Name>Block Write and Execute Access but allow approved USBs</Name>
   <IncludedIdList>
   <GroupId>{d0da1d5b-5be8-4065-a301-127421b75d2b}</GroupId>
   </IncludedIdList>
   <ExcludedIdList>
   <GroupId>{b6e73746-4b81-4315-91a6-7f1d08de0fbd}</GroupId>
   </ExcludedIdList>
   <Entry Id="{f8ddbbc5-8855-4776-a9f4-ee58c3a21414}">
   <Type>Deny</Type>
   <Options>0</Options>
   <AccessMask>6</AccessMask>
   </Entry>
   </PolicyRule>

2. <Group Id="{d0da1d5b-5be8-4065-a301-127421b75d2b}">
   <MatchType>MatchAny</MatchType>
   <DescriptorIdList>
   <PrimaryId>RemovableMediaDevices</PrimaryId>
   </DescriptorIdList>
   </Group>

3. <Group Id="{b6e73746-4b81-4315-91a6-7f1d08de0fbd}">
   <MatchType>MatchAny</MatchType>
   <DescriptorIdList>
   <InstancePathId>USBSTOR\DISK&amp;VEN_TOSHIBA&amp;PROD_TRANSMEMORY&amp;REV_1.00\C412F52D6C9DC05020077A11&amp;0</InstancePathId>
   </DescriptorIdList>
   </Group>

Any ideas why two of the OMA-URI's fail?

Thanks!!

level 1

I'd say it's enough. Defender has gotten way better than it used to after they got updated to 4.18 (AV-score gave it a perfect score). You have to configure stuff though, like Firewall, Task Scheduler, etc. to get it to its full potential. It's free and lightweight so it's all good. I never had any problems with it. If you want to be really secured though go for Kaspersky. It has more features than Windows Defender, although it doesn't have firewall.

level 1

I'd search up tools like ConfigureDefender, featured in one of TPSC videos titled "Windows Max Security Tested" on YouTube.

Really bolsters Windows already good preexisting security to another level.

level 1

to those saying Windows Defender is heavy on resources, my xp is the opposite. It's pretty light,hardly noticeable and no 'noise' and my system is far from being new (I5 4670 ). How can something already integrated into the OS cause a burden? Maybe its something else that's causing the slowdown? Is why i ditched 3rd party AV and stuck with Defender (alongside configuredefender)

level 2

Doesn't it's free for first 30 days?

level 2

Kaspersky Security Cloud slows down internet browsing and a lot of programs, i don't recommend using it.

One program that a i had a lot of problems (freezing and slow down) using this Antivirus was Adobe Acrobat Reader.

level 1

Get something like Sophos(get your own link dont click things from reddit) which offers a premium for a month I believe then really good free anti-virus once it expires.

level 1

Depends on your threat model.

Here is a test done by a cybersecurity professional.

level 1

Defender is highly recommended by AVTest. It has improved so maybe I will stick to Defender. I have an old PC i7-4770 and tested the difference when defender is disabled, apparently, you have to disable also the real-time protection in group policy. There is a very slight difference in performance but not noticeable. I tried copying from one drive to another and from the remote folder and the result is about 2 to 3 seconds difference, not sure if the difference is significant

level 1

Not from what I can tell. I'm using Kaspersky. No problems

Is Windows Defender enough for 2022?

One of the most recent Real-World Protection reports is from February 2022, which used 362 test malware cases. Windows Defender scored 98.9% and didn't present any false positives (identifying verified software as malware incorrectly).

Do you still need antivirus software 2022?

Overall, you probably still do need antivirus software, but some types of devices need it more than others. The only operating system that you absolutely do not need to install antivirus software on is iPhones. However, Windows, macOS, and Androids still need antivirus software.

Is just Windows Defender enough?

While Microsoft Defender has improved over the years, it's not enough to fully secure your Windows PC. It does have some good features, like parental controls, phishing protection, and hardware security, but these features aren't as comprehensive as those offered by a premium antivirus service.

Is defender enough for Windows 10 Reddit?

if you have any idea & an already secure safe layered network, then defender is MORE than enough, because it likely wont ever get used.

Is Windows Defender enough for 2022?

Is just Windows Defender enough?

Is antivirus needed in 2022?

Is Defender enough for Windows 10 Reddit?