It protects against phishing or malware websites and applications and the downloading of potentially malicious files.
It runs on files that have theMark of the Web(MotW) and are clicked on by users.
It is worth noting that when SAC is enabled, it replaces and disables Defender SmartScreen.
Alternatively, one can create an LNK file that contains a relative path such as .\target.exe.
Reputation Hijacking: Involves finding and repurposing apps with a good reputation to bypass the security system.
Reputation-based protection systems are a powerful layer for blocking commodity malware.
Elastic Security Labs has releasedan open-source toolfor checking the trustworthiness of a files Smart App Control.
source: www.techworm.net
