cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Microsoft Defender for Endpoint Blog

Your community for best practices and the latest news on Microsoft Defender for Endpoint. For all release announcements on Microsoft Defender for Endpoint from features under development to retirement, visit the M365 Roadmap.
Microsoft Secure Tech Accelerator
Apr 13 2023, 07:00 AM - 12:00 PM (PDT)
Microsoft Tech Community
Find out more
Options
2,379

Microsoft awarded Best Advanced Protection for Corporate and Consumer Users by AV-TEST

Nick_C on Mar 20 2023 11:00 AM
AV-TEST has awarded Microsoft Best Advanced Protection 2022 for both Corporate Users and Consumer Users categories.
3,653

Defender for Endpoint and disconnected environments. Which proxy configuration wins?

BrianBaldock on Feb 21 2023 11:32 AM
This article is a follow-up to a previous one discussing conflicting proxy configurations and how Microsoft Defender for...
6,758

Push ASR rules with Security Settings Management on Microsoft Defender for Endpoint managed devices

DanLevyMS on Feb 02 2023 07:01 AM
Now in public preview, Microsoft Defender for Endpoint expands Security Settings Management support to push ASR rules on...
8,825

Announcing device isolation support for Linux

Ayelet_Artzi on Jan 30 2023 02:50 PM
Now in public preview, Microsoft Defender for Endpoint releases device isolation support for Linux.
254K

Recovering from Attack Surface Reduction rule shortcut deletions

Scott Woodgate on Jan 14 2023 12:12 AM
Guidance on how to recover from short-cut deletions including PowerShell script.
7,754

Introducing tamper protection for exclusions

JoshBregman on Jan 12 2023 01:53 PM
One of the most requested features for tamper protection is protection of antivirus exclusions. With that in mind, the M...
9,552

Disconnected environments, proxies and Microsoft Defender for Endpoint

BrianBaldock on Jan 06 2023 11:13 AM
Recommendations and guidance for deploying Microsoft Defender for Endpoint in disconnected or air-gapped environments
20.9K

New network-based detections and improved device discovery using Zeek

eladsolomon on Nov 28 2022 05:00 AM
Microsoft Defender for Endpoint is now integrated with Zeek, a powerful open-source network analysis platform.
10.2K

Announcing new removable storage management features on Windows

Tewang_Chen on Nov 21 2022 09:20 AM
Better manage removable storage devices with new removable storage access control capabilities in Microsoft Defender for...
10.2K

Use the new Microsoft 365 Defender API for all your alerts

Naama Schlesinger on Nov 11 2022 09:00 AM
The new Microsoft 365 Defender alerts API, currently in public preview, enables customers to work with alerts across all...
20.3K

Microsoft Defender for Endpoint announcements at Microsoft Ignite 2022

Nick_C on Oct 12 2022 08:40 AM
Microsoft Defender for Endpoint makes its mark at Microsoft Ignite 2022. See what we announced at this year's event.
15.7K

Detecting and remediating command and control attacks at the network layer

OludeleOgunrinde on Oct 12 2022 08:00 AM
Microsoft Defender for Endpoint helps SecOps teams detect network C2 attacks earlier in the attack chain, minimize the s...
17.6K

Tamper protection will be turned on for all enterprise customers

JoshBregman on Sep 20 2022 05:00 AM
Starting last year, to better protect our customers from ransomware attacks we turned on tamper protection by default fo...
5,695

Microsoft Defender for Endpoint is now available on Android company-owned personally enabled devices

priyankagill on Sep 19 2022 08:01 AM
With an increasing number of users choosing to access company resources from mobile devices to improve productivity, org...
5,847

Improving device discoverability and classification within MDE using Defender for Identity

YakirZilberman on Sep 13 2022 10:39 AM
Leveraging Microsoft Defender for Identity as a data source for Defender for Endpoint device discovery can help improve ...
12.5K

Attack Surface Reduction (ASR) Rules Report 2.0 in Microsoft 365 Defender

OludeleOgunrinde on Sep 06 2022 10:51 AM
Thanks to customer feedback, we are delivering the future of ASR Rules reporting and making it easier than ever to under...
6,143

New Mobile Threat Defense capabilities for Android & iOS

Mukta_Agarwal on Aug 30 2022 11:05 AM
Now generally available: Privacy Controls, Optional Permission, and Disable Web Protection.
4,735

How to deploy Attack Surface Reduction rules to Azure VMs using Azure Guest Configurations

mahmoudmsft on Aug 19 2022 07:34 AM
In this article, we will discuss a way to deploy ASR rules to VMs when other management tools are unavailable.
15.6K

Network Protection and Web Protection for macOS and Linux

NickWelton on Aug 17 2022 03:48 PM
When we first launched Network Protection for Windows and built powerful Web Protection and Microsoft Defender for Cloud...
8,401

Tamper protection on macOS is now generally available

Camilla_Djamalov on Aug 15 2022 04:53 PM
An integrated tampering alert in the Microsoft 365 Defender portal Microsoft Defender for Endpoint's tamper protection f...
20.2K

New Device Health Reporting for Microsoft Defender for Endpoint is now generally available

marysia_k on Aug 08 2022 02:42 PM
We are excited to announce the public preview of new device health reports for Microsoft Defender for Endpoint.
3,801

Announcing File page enhancements in Microsoft Defender for Endpoint

Oren_Saban on Jul 28 2022 08:00 AM
Have you ever investigated files in Microsoft Defender for Endpoint? We have now made it even easier.
11.9K

Introducing the new alert suppression experience

Yonit_Glozshtein on Jul 05 2022 08:48 AM
We are excited to share the new and advanced alert suppression experience which provides tighter granularity and control...
11.1K

Mobile Network Protection for Defender for Endpoint on Android and iOS now Generally Available

Aparna_Harikumar on Jun 28 2022 08:27 AM
The way organizations conduct business has changed dramatically over the past few years, with employees working from hom...
15.6K

Prevent compromised unmanaged devices from moving laterally in your organization with “Contain”

Yossi Basha on Jun 09 2022 06:00 AM
71% of human operated ransomware cases are initiated by an unmanaged device, usually internet facing, that is compromise...
2,964

Mobile device support is now available for US Government Customers using Defender for Endpoint

Mukta_Agarwal on Jun 07 2022 09:00 AM
As endpoints become more dispersed with the increased adoption of hybrid work, it has never been more critical for organ...
11.8K

Hunting for network signatures in Microsoft Defender for Endpoint

cventour on May 27 2022 06:00 AM
Read this blog post to discover Microsoft Defender for Endpoint new capability on capturing and analyzing Network traffi...
4,225

Evaluation Lab: new domain-joined devices support in Public Preview

noam_hadash on May 25 2022 06:18 AM
Domain-joined devices support enable to run more complex simulations and impactful attack scenarios
15K

Troubleshooting mode for Microsoft Defender for Endpoint now Generally Available

Juli Hooper on May 16 2022 01:39 PM
Troubleshooting mode for Microsoft Defender for Endpoint now in public preview Microsoft Defender for Endpoint offers th...
7,365

Announcing the public preview of Defender for Endpoint personal profile for Android Enterprise

priyankagill on May 13 2022 07:48 AM
The Microsoft Defender app now supports personal profiles for Android Enterprise in public preview.

Latest Comments

Dean Gross
in Become a Microsoft Defender for Endpoint Ninja on Mar 26 2023 08:58 AM
@Ideen_Robinson there are some new videos at Microsoft 365 Defender Virtual Ninja Training – Microsoft Adoption
0 Likes
Ideen_Robinson
in Become a Microsoft Defender for Endpoint Ninja on Mar 21 2023 11:45 AM
I am starting out in Security and this looks like an amazing resource. Thank you! The last update shows May 18, 2022. Will there be any further updates?
0 Likes
Jonhed
in Microsoft Defender ATP Streaming API - Public Preview - DIY example on Mar 20 2023 04:04 PM
Do you have P1 or P2 licensing?Accessing these logs within the portal requires P2, so you probably need P2 to export them too. Not sure if what you are seeing is correct though, so best bet is to wait for the support answer.
0 Likes
DineshCR
in Microsoft Defender ATP Streaming API - Public Preview - DIY example on Mar 20 2023 03:57 PM
@Jonhed  Nope I don't see it... 
0 Likes
Jonhed
in Microsoft Defender ATP Streaming API - Public Preview - DIY example on Mar 20 2023 03:55 PM
This blog post is old, and refers to the old MDE security center.It is different from the current Microsoft 365 Defender, so tye blog post screenshots are not valid any more.
0 Likes