Microsoft has released a couple of new capabilities for its Defender for Endpoint solution. The latest update brings enhancements to the open Wi-Fi detection capabilities for enterprise customers. Microsoft Defender for Endpoint improves security by detecting when a device connects to an unsecured Wi-Fi network. It generates an informational alert in the Defender portal to...
Microsoft has announced this morning a slew of new features for its Intune Suite to enhance the security of Windows endpoints. Updates include enhanced capabilities for Endpoint Privilege Management (EPM), Enterprise Application Management, and Remote Help. Microsoft Intune EPM supports a Zero Trust security model by allowing a broad user base to operate with the…
Microsoft has added support for aggregated reporting in public preview within its Defender for Endpoint solution. This new feature aims to overcome limitations in event reporting and improve data analysis for endpoint security. What is the problem? Essentially, Microsoft Defender for Endpoint collects a lot of data from various points in enterprise networks to detect…
Last Update: Sep 09, 2024
Microsoft has released an update for its Defender for Cloud Apps, extending its Shadow IT discovery capabilities to macOS devices. This enhancement enables organizations to monitor and manage unauthorized SaaS applications on Mac machines. What is Shadow IT? Shadow IT refers to the use of technology systems, software, applications, services, and devices without the IT…
Microsoft has announced the general availability of the Copilot for Security threat intelligence (TI) embedded experience in the Defender XDR portal. The new AI-powered tool is designed to contextualize and summarize intelligence from Microsoft Defender Threat Intelligence (MDTI) and threat analytics. The new Microsoft Copilot for Security TI embedded experience enables customers to access and…
Microsoft Defender for Endpoint has added a new Offline Security Intelligence Update feature in public preview for Linux devices. This functionality enables organizations to update security intelligence even when internet connectivity is limited or unavailable, by utilizing a local hosting server. Microsoft has highlighted several key benefits of the new offline security intelligence update feature…
Last Update: Apr 17, 2024
After struggling for years with tools like Microsoft Deployment Toolkit (MDT), Barry Weiss heard about a simpler and less expensive solution called SmartDeploy at a Microsoft conference.
Microsoft is making some improvements to the way Intune deploys and manages Microsoft Defender for Endpoint on devices. This release enables organizations to use a unified device management service for monitoring and protecting their devices with cloud-based threat detection and response capabilities. “The single-pane of glass for these capabilities will be Intune. This assures streamlined…
Microsoft has introduced advanced investigation and response capabilities within its Defender for Endpoint service. The latest release brings support for file collection and investigation package collection response actions in public preview for macOS and Linux devices. According to Microsoft, security professionals should have a clear view of compromised devices to identify the malicious activities that…
Microsoft has announced that support for dynamic rules for tagging devices is now generally available for its Microsoft Defender for Endpoint solution. This feature allows organizations to create and manage rules, allowing the automatic assignment and removal of tags from devices according to user-defined criteria directly within the Microsoft Defender portal. Microsoft explained that managing…
Microsoft has released a new update that streamlines the device connectivity and onboarding experience for Microsoft Defender for Endpoint. The new feature is currently available in public preview for Windows PCs, with macOS and Linux support to follow in the coming months. Up until now, security teams were required to separately set up and manage…
Microsoft Defender for Endpoint is getting a security feature designed to thwart human-operated attacks automatically. The introduction of new “contain user disruption” capabilities empowers organizations to swiftly isolate compromised user accounts and put a stop to lateral movement during hands-on keyboard attacks. Microsoft Defender for Endpoint is a security solution that enables customers to detect,…