If a user begins typing their username or password in any app or a page in any Chromium-based browser known for phishing attacks, Windows 11’s new Microsoft Defender SmartScreen will warn them. If the feature detects a user has entered their credentials in an unsafe place, it encourages them to change their password.
SmartScreen will try to understand users’ password entry context by reading process connections, URLs, and certificate information at the OS level. The feature works to protect local passwords, Microsoft accounts, Active Directories, and Azure Active Directories. It also constantly learns about new phishing scams from the rest of Microsoft’s security stack.