The latest Insider Build for Windows Server, version 26360, has been released, introducing a new software security feature known as Windows Defender Application Control for Business (WDAC). This enhancement aims to bolster security measures against cyber threats by enforcing a policy that restricts which applications can be executed on the server.
By creating an explicit list of approved software, WDAC seeks to mitigate risks from potentially harmful applications, including those commonly used in phishing schemes and other malicious activities. Microsoft has streamlined the implementation process by offering a default policy that server administrators can easily apply through PowerShell commands or the OSconfig security configuration platform.
Additionally, the new build brings access to the Windows Admin Center (WAC), enabling users to download this management tool directly from the operating system.
For those interested, the complete release notes for this update can be found here.