Windows Defender will now detect when accessibility programs such as sethc.exe or utilman.exe have been hijacked by an Image File Execution Options debugger so that they can be used as a backdoor.  […]

from https://www.bleepingcomputer.com/news/security/windows-defender-can-detect-accessibility-tool-backdoors/