I would be more worried about slack remote connection policies.

This is true. And I am not trying to minimize the severity of that vulnerability. And certainly, Microsoft needs to patch it quickly. But realistically, how worried are you that this might happen with one of your computers? Or the computers belonging to your family, friends and clients?

That is, how many users do you know even have remote access set up? That is, to allow access from outside their own network? I think I know two, and both are IT professionals. How many users do you know leave their computers out, unattended and exposed where strangers or untrustworthy users can sit down at that computer and exploit this vulnerability?

So I think that illustrates my point, but from a different angle. That "security researcher" ::)  had his little puerile tantrum because his reward was not as big as he greedily thought it should be. Yet we have to wonder, how serious, or rather how likely is it that this vulnerability will be exploited? How many users are likely to be victimized? I have to think it would be very few.

Now I don't know about others, or that security researcher, but a $1000 "reward" is not chump-change to me. This guy is not a Microsoft employee. He didn't risk his life or his own security. He was not hired by or contracted by Microsoft to find security flaws in Windows.

He did not selflessly sacrifice anything! And yet he's so mad at Microsoft because they wouldn't give him $10,000, that he selfishly and recklessly put others at risk!  >:( >:( >:(

Odd how .05 was removed from the change history log.

Oh well. No big deal.

When BleepingComputer asked Naceri why he publicly disclosed the zero-day vulnerability, we were told he did it out of frustration over Microsoft's decreasing payouts in their bug bounty program.

So in other words, the crybaby disclosed the zero-day vulnerability totally out of greed because his reward would only be $1,000 instead of the $10,000 he thought he deserved.  >:(

What a brat.

Let's not forget how this particular vulnerability may be exploited. The bad guy must have "limited access to a compromised device". That is, the bad guy must have physical access to the machine. How likely is that to happen and go unnoticed?

And then he or she must somehow be able to log into that Standard account. How? With the username "standard" and password, "12345678"?  It is not like a hacker in N. Korea or Iran can suddenly gain admin privileges on our systems with a couple clicks of his mouse.

"Security researcher"? Yeah right! He's a hacker. And not a white hat hacker either.

That's great that some development activity is taking place, but I feel it is too bad they didn't wait until they could say it work with Windows 11 too.

I mean the last full official (non-beta, non-alpha) release was with V19.00 back in February 2019. That's nearly 3 years ago! What's another couple months to ensure it works with W11 now that it is officially out and most new computers are coming with W11, or will soon be upgraded to it?

Oh well. Like I said, it is good to see development is still on-going.

I am really concerned the shortage of computer chips will not be over by then.

Try uninstalling it, rebooting, then installing it again.

There are other things that can trigger a scan (line some Defender engine updates) that may reset the schedule. In any case, I still would not worry about it - especially when no threats are found.

From what I saw until now, the updates are daily, but the scan is probably set by default once a week.
The default scan is weekly but updates will occur at just about any time. I have seen multiple in a single day, and I have seen where nothing comes in a day. It just depends on what is happening out there in the wild. If a new vulnerability or exploit is discovered, MS will push out the update as soon as it is ready, even if another update came out just hours earlier. This is all good, IMO.

I am guessing that that date caused Windows Defender to do some sort of extraordinary scanning that it would not have otherwise done.  By that I mean that it probably searched every little item in the computer

I think that is a decent guess, but I don't think that is it - but admittedly, I am working on a couple "guesses" too. I note 1999 is commonly used by BIOS makers as the default date (until the correct date and time is set in the BIOS Setup Menu). Note a totally inaccurate date and time is a common symptom of a weak/failing CMOS battery. The two primary functions of the CMOS battery is to (1) keep the "user changes" to the BIOS firmware default settings "alive" in the CMOS memory and (2) keep the motherboard's RTC (real time clock) "ticking" ("counting" to be more accurate) when the computer is turned off.

If the motherboard's CMOS battery has never been replaced on this older system, I would probably replace it. Typically they are CR2032 wafer or "coin" batteries, found at nearly every battery counter.

While I agree it "appears" Microsoft Defender (Windows Defender is its old name) did a deep scan, the screen shot says "Quick".

Also I just counted every file on my computer by opening an elevated cmd prompt, moving back to the root on the disk (cd .. until I got C:\> on the command line) on this system, and entering dir *.* /s. That lists every file and folder in that root directory and then the /s forces it to list every file in every subfolder on that drive too. In other words, every file on the disk. Even with a fast SSD, it took several minutes to list all the files on my boot drive.

And still I only(?) had 589,368 files on C drive. I did the same on my secondary drive and it only showed 13,485 files. That's 1/3 of the 1.5 million files you first displayed. Checking the other computers here, and all had fewer files than this, my primary computer.

Now why do I show ~600,000 on the disks but Defender only scanned 46,000? That's easy. Security programs, including Microsoft Defender know that only certain type of files are used by the bad guys. These typically are files that can be "run", otherwise known as "executables". This list is not all inclusive but gives you a pretty good idea of the most common file types used by bad guys to insert their malicious code.

By not scanning every single file on your disk, scans not only take up much less time, they also bog down our systems much less, and (especially for mechanical drives) result in much less wear and tear on the drives. Note since scans are "read" actions (not "write") the wear on SSDs is negligible.

I really hope this is true.
It is. EACH and EVERY file downloaded and saved on our systems ARE scanned on the way in by the real-time scanner. Every time a file is modified and saved to disk, it is scanned. Plus, when you call up any file, including one of those obscure file types, the real-time scanner looks for "suspicious" activity and will halt that activity if something fishy is detected.

Last but not least, regardless your primary scanner of choice, everyone should have a secondary scanner on hand for "on-demand" or supplemental scanning just to make sure we (users and ALWAYS weakest link in security) or our primary scanner didn't let something slip by. In other words, "for peace of mind" and I use and recommend Malwarebytes for that.

FTR, Malwarebytes has never, not once found anything malicious on any of my systems here going back to Windows 7 in 2009 with Microsoft Security Essentials (the W7 version of Windows Defender), through W8 and now with W10 and Microsoft Defender. That's a pretty good track record, if you ask me considering 2 of my computers are regularly used by guests, including several ("it can never happen to me") teenaged grandkids.

The only thing Malwarebytes has ever found on any of my systems are a couple "wanted" PUPs (potentially unwanted programs).

So keep your OS and your security programs current and don't be "click-happy" on unsolicited links, then chill. Odds of getting infected are very very slim.

Is it possible you can still be infected? Of course! It is possible Fort Knox might be robbed too. How? One of the guards opens the front door and invites the bad guys in. Or, a super-duper professional targets it specifically and manages to exploit some "unknown to everyone else" vulnerability.

The difference here is Fort Knox doesn't have backup copies of all the gold. But you, of course, have multiple current backup copies of all your data, including at least one copy maintained "off-site"! Right?

Even though many of them will never be in use again.
Then I would recommend you move them off to a couple back up drives. If they will never be used again, then don't need to be scanned over and over and over... and over again.

Well, this computer is 6 years old, but has nearly 20 years worth of data on it. I'm looking at a nearly 46,000 files taking 1m 21s.

While you are scanning 1.5 million files, it is still taking a long time. Is that a hard drive?

I agree with Corrine and you need to cleaning up, deleting duplicates, and moving some files.

If you have multiple drives, my advice is to set Windows to create a PF on each drive and let Windows manage all of them.
Why? Is this a laptop with the battery removed?

Looks like it scanned to day and is scheduled to scan next Sunday. But again, it is running all the time and updates happen much more often than that - often several times a day, depending on what is happening out in the wild. I just checked again and another since my last post was released. Just another reason to let the computer go to sleep.

Well, again, if you turn your computer off when done using it, that would be expected.

Are you saying you still have that yellow warning?

