Home » Technology » Windows LSA protection warnings caused by Microsoft’s Defender update

Windows LSA protection warnings caused by Microsoft’s Defender update

Microsoft is one of the most prominent tech giants in the world of software and computing. They have been releasing updates and upgrades to their products and services regularly to improve functionality, security, and stability. Recently, Microsoft has been receiving warnings from users who have installed the latest version of their Defender update. Many of these warnings are concerning the Local Security Authority Subsystem or LSA Protection feature in Windows. In this article, we will explore the reasons behind this warning and what Microsoft’s Defender update means for your computer’s security.


According to Microsoft, the KB5007651 update for Microsoft Defender Antivirus is causing warnings on Windows 11 systems indicating that Local Security Authority (LSA) Protection is disabled. LSA Protection is a security feature that prevents the theft of sensitive information such as credentials by blocking untrusted LSA code injection and process memory dumping. While user reports claim that these warnings are appearing even when LSA Protection is enabled, Microsoft has acknowledged this as a known issue that is persistent and requires a restart after enabling LSA Protection. This issue specifically affects Windows 11 21H2 and 22H2 systems. Microsoft is working on a resolution and provides a workaround for affected customers to ignore the restart notifications. Dismissing the warnings by adding registry entries is not recommended. Additionally, Microsoft has announced that LSA Protection will be enabled by default for Windows 11 Insiders in the Canary channel if their systems pass an incompatibility audit check.


In conclusion, Microsoft’s Defender update has caused some unexpected warnings in the Windows LSA protection system. While concerning to some users, it’s important to remember that these warnings are not necessarily indicative of a security breach or threat. The update actually represents an effort by Microsoft to enhance security measures and protect users from potential attacks. As with any software update, there may be some unexpected side effects, but ultimately the benefits outweigh the risks. Microsoft remains committed to staying at the forefront of protecting users against evolving cyber threats, and the Defender update is just one example of this ongoing effort.

Leave a Comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.