[xnyan]

Cloudstrike customers voluntarily agreed to allow Cloudstrike to push kernel drivers. What should Microsoft have done to prevent this?

[ck45]

Move Windows Defender into user space and enforcing the same for all security software.

[IcyWindows]

This has nothing to do with how Defender works.

Crowdstrike shipped a driver that they marked as a mandatory boot driver. The Windows OS could have had more recovery options otherwise.

[ck45]

Moving Defender to user space is a requirement to lock down windows from a fair competition perspective. Microsoft is currently blaming the EU commission for not allowing them locking down Windows, compare https://www.telegraph.co.uk/business/2024/07/22/microsoft-bl...