Windows 10 Antimalware Will Allow Apps to Scan Against Malware
Tired of Malware? Well Windows 10 might have a solution for you. A new method called the Antimalware Scan Interface (AMSI) is being introduced by Windows for your apps to scan their content actively for malware.
This initiative will allow the developers to insert an antimalware within their app to check the content once installed on any computer. The Antimalware Scan Interface let the apps check the product locally with the antimalware pre-installed within it.
Microsoft’s Principle Software Engineer, Lee Holmes, says that this step will assist in dealing, most importantly, with the script content. What usually happens is that these malwares hide in the memory of the application and does not let it appear in the files due to which most of the anti viruses are unable to detect them.
“While the malicious script might go through several passes of deobfuscation, it ultimately needs to supply the scripting engine with plain, unobfuscated code. When it gets to this point, the application can now call the new Windows AMSI APIs to request a scan of this unprotected content.”
According to the Antimalware Scan Interface, ‘file and memory or stream scanning, content source URL/IP reputation checks, and other techniques.’ This is not the only good news, the feature will not only look into the script content but also the plugins before they start downloading for a game and even instant messages before they display the text on screen.
Chief security strategist Catalin Cosoi at the Bitdefender says that this initiative is good to start with however it needs to be done by both parties and not just one.
“We obviously salute the initiative, but there’s two sides to every medal. Will they actually use the feature? Will their programs correctly interpret the answers provided by the antimalware engines and take the right decisions?”