Tamper protection 2

martink
martink Posts: 445 Rising Star

There was a post earlier about Tamper Protection

https://community.f-secure.com/t5/Business/Tamper-protection/m-p/72910#M4562

 

While

Windows 10’s May 2019 Update brings a new “tamper protection” feature to Windows Security, also known as the Windows Defender antivirus. Tamper Protection is off by default, and Windows Security says “your device may be vulnerable” unless you enable it.

 

Note that Tamper Protection only applies to Windows Security settings. If you’re using a third-party antivirus, it won’t protect that antivirus’s settings. Some third-party antivirus programs have similar built-in “tamper protection” features to protect their own settings, too.

 

Referring to the last sentence I wonder what is the situationnow  regarding the home products IS, Safe, Total and TP

Comments

  • Ukko
    Ukko Posts: 3,739 Superuser

    Hello,

     

    Based on article and how feature is described with common words:

    FS Protection (beta F-Secure SAFE / IS) with some soft tweaks for related protection layers. Although, I am not sure how "Tamper Protection" is designed with Windows 10 (and does it applied to home users editions or not).

     

    For except system-based things like requirements for Administrative rights (even for launch "regedit" and edit it by own steps) - I feel that there are certain protection tweaks against unauthorized changes to F-Secure critical settings through the registry (based on how F-Secure installation should to intercept changes). But, perhaps, there are some ways to bypass it (while Administrative rights are still needed for such actions, probably).

     

    Thus, if your daily / common user account is "normal user" (and is not "administrator" type user account, which is preserved for required tasks) and all updates / patches are installed - then solution and system are protected so so. At least, pretty useful against some undetected malicious and harmful attempts (tricky to perform impact where it is not possible to escalate permissions).

     

    But, probably, threats that are targeted against F-Secure directly.. should be prevented by security layers as harmful items or suspicious items. And if they are not prevented - probably, there are some tricks for unintended modifications.

     

    What is your opinion (since there are no any other replies yet)? Just as discussion.

     

    Thanks!

This discussion has been closed.
Feedback on New Design