As its name indicates, the Windows 10 Fall Creators Update will include primarily new features and updates for "creators".
Google Project Zero continues to scrape away at the ubiquitous Microsoft Malware Protection Engine at the core of many security products embedded in Windows, and it continues to discover new critical vulnerabilities.
New Security Analytics capabilities will analyze Windows security feature utilization and configurations as well as Windows 10 security patch status across Windows 10 end points.
The Microsoft Sway app for Windows 10 has received a substantial update.
By integrating the power of EMET along with new vulnerability mitigations, Exploit Guard includes prevention capabilities that help make vulnerabilities dramatically more hard to exploit. The company is also using this cloud-based protection model to improve Windows Defender Antivirus. Seeing as that deadline has come and gone, this security enhancement will be shipped with Redstone 3. Windows Defender ATP, going forward, will include Windows Defender Application Guard, Windows Defender Device Guard and Windows Defender Antivirus, officials said. This feature will protect your environment if a local user downloads malicious applications from the Internet or a zero-day exploit is encounter in the browser; WDAG is able to isolate the machine from the rest of the network and stop the malicious applications/intruders from reaching other areas of your infrastructure.
Microsoft is pitching that they are including all these new security features out of the box without the need to install third-party applications or agents. But Microsoft also will be adding some features to this next feature update to Windows 10 for Enterprise and Windows Server users, too.
Regarding the RCE flaw in Microsoft Malware Protection Engine, Microsoft wrote, "An attacker who successfully exploited this vulnerability could execute arbitrary code in the security context of the LocalSystem account and take control of the system".
Even though this data is now unavailable it's unclear how many people gained access to it whilst it was live on the web. After announcing it would discontinue supporting EMET in 2018 because Windows 10 was so secure, Microsoft has made a decision to build EMET into the Windows 10 core, extend it, and call call this feature Windows Defender Exploit Guard.
The company plans to make the management of all of these features more seamless with Intune and System Center Configuration Manager, they said.