Discussing Anti-Virus Options
Windows 11 Security includes standard anti-virus and anti-malware called Windows Defender. It's a reasonably capable traditional anti-virus feature for no added cost. For many that is good enough, especially if you are careful to NOT click on links in emails and ignore things like fake virus alerts that have become so popular recently.
Some people want something extra, or something more, or something made by a different company. In that case, you can choose either a different anti-virus product (BitDefender, Norton, McAfee, MalwareBytes, etc.) or you can choose an upgrade to EDR (Endpoint Detection and Response). Each is described below.
Traditional Anti-Virus
Anti-Virus (AV) watches for bad identities and tries to block them. It keeps a list of bad items (files, viruses, trojans, worms, etc.), which always needs to be updated, and then watches your system for any sign of such bad items. We’ve been doing AV this way since the 80’s. If we made an analogy of how this works using a home security system, it would be like keeping a list of all the known bad people, and their pictures, so that when any one comes to the door, you could check if they matched the list or the picture, and decide whether to let me them in or keep them outside. Keeping that list accurate and up-to-date (timely updates) is critically important.
Upgrading to EDR
EndPoint Detection and Response (EDR) watches for bad behaviour. If something on your computer suddenly tries to delete or encrypt every file in your documents folder, EDR would say “this doesn’t look like any reasonable behaviour” and would block it. There are many more examples. And EDR software is particularly adept at un-doing any actions that a virus or trojan might have tried to start. In our home security analogy, it wouldn’t matter what the person looks like, if they are walking around the back yard in the dark with a crowbar, it would already turn on the yard light and lock the doors and windows. Bad actors could still be identified, but typically the behaviour has been blocked before any identity is even revealed. EDR also has more tools available to undo and repair damage that it finds.
You can use Windows Defender for free, or buy AV or EDR software from online vendors. Prices vary, and often have great introductory pricing for the first months or year, and deals on multiple computers. Check online for current pricing and offers.
Bitlink also offers both AV and EDR security as a service, meaning you subscribe to the service, and then I actively monitor it. If there are issues with AV updates, or a virus is encountered, or if EDR has a problem or has blocked some threat, I am alerted to it, and may even be able to address the issue or fix the problem automatically or remotely. For personal computers, Monitored Anti-Virus is $60/year per computer (billed $15 quarterly) and Monitored EDR is $84/year per computer (billed $21 quarterly). These are available for Windows and Mac computers.
For business users, please ask about pricing, and about complete security and continuity (backup) packages.
People also ask about firewalls and VPNs, as they are sometimes included in Security Suites or bundles.
Firewalls & VPNs
I find that the firewall included by default with Windows 11 is sufficient for almost all home and most business users. Added firewalls (like Nortons) for home users most often lead to extra, confusing popup questions, add very little extra value in security, and sometimes break network printing or other normal activity. VPNs may have value for some people who are want to ensure an extra level of anonymity online, perhaps add some extra privacy, or need to fake their location when online. But good privacy is often more about careful behaviour than added features.