Microsoft Defender for Endpoint Adds Device Isolation and Antivirus Scanning Support on Linux and macOS

Last Update: Aug 30, 2023 | Published: Jul 13, 2023

Microsoft logo

SHARE ARTICLE

Microsoft Defender for Endpoint has announced that Device isolation and Antivirus scanning capabilities are now available in preview for macOS and Linux devices. The new response actions should help to protect organizations against security threats.

The device isolation feature blocks the compromised device from connecting to the corporate network. Meanwhile, Microsoft Defender for Endpoint continues to monitor the device and detect any malicious activities. It’s also possible to take the response action during a Live Response session and through the macOS API.

“In situations where the severity of an attack calls for immediate action, the Isolate device response action offers a crucial line of defense. By isolating a compromised device from the network, you can prevent attackers from controlling the device and engaging in activities such as data exfiltration and lateral movement,” Microsoft explained.

Microsoft Defender for Endpoint can now run antivirus scans

Additionally, Microsoft Defender for Endpoint has introduced the Run Antivirus Scan response action for Linux and macOS. The feature lets users remotely scan, detect, and remediate malware on compromised devices. Customers can choose to run a quick or a full scan on their devices. Microsoft Defender for Endpoint will trigger alerts and notifications in case malware is detected on the Mac or Linux machine.

Microsoft Defender for Endpoint Adds Device Isolation and Antivirus Scanning Support on Linux and macOS

Microsoft says that the new capabilities should let IT admins quickly and effectively respond to security threats. “We are excited to offer these capabilities to our Linux and Mac communities so that security teams can be better equipped to protect and respond to advanced threats across their multi-platform enterprise, no matter which platforms their devices run,” Microsoft added.

In related news, Microsoft has recently released a new update for Microsoft Defender for Endpoint. This release enables IT admins to manage security configuration settings directly in Defender for Endpoint on Windows, macOS, and Linux devices.

SHARE ARTICLE