Microsoft Defender Antivirus in Windows 10 now comes with UEFI scanner to detect firmware attacks

Home » Microsoft

Reading time icon 1 min. read

Calendar icon Updated on

by Pradeep Viswav 

updated on

Share this article

Readers help support MSpoweruser. We may get a commission if you buy through our links. Tooltip Icon

Read our disclosure page to find out how can you help MSPoweruser sustain the editorial team Read more

Microsoft Defender Antivirus

Microsoft Defender Antivirus

Microsoft Defender Antivirus is the built-in antivirus solution on Windows 10 PCs. It offers behavior-based, heuristic, and real-time antivirus protection for free. Microsoft has recently included a new component called UEFI scanner in the Microsoft Defender Antivirus. This UEFI scanner scans the firmware filesystem at runtime by interacting directly with the motherboard chipset. To detect security threats, this scanner performs analysis using following solution components:

  • UEFI anti-rootkit, which reaches the firmware through Serial Peripheral Interface (SPI)
  • Full filesystem scanner, which analyzes content inside the firmware
  • Detection engine, which identifies exploits and malicious behaviors

You can learn about how Microsoft built this new UEFI scanner from the source link below.

The new UEFI scanner adds to a rich set of Microsoft technologies that integrate to deliver chip-to-cloud security, from a strong hardware root of trust to cloud-powered security solutions at the OS level.

Source: Microsoft

More about the topics: Firmware attack, Microsoft Defender Antivirus, UEFI Scanner, windows 10

Pradeep Viswav

Pradeep Viswav Shield

Software and Services Expert

Pradeep is a Computer Science and Engineering Graduate. He was also a Microsoft Student Partner. He is currently working in a leading IT company.