We are excited to share major updates to the Malware protection capabilities of Microsoft Defender for Endpoint on Android. These new capabilities form a major component of your next-generation protection in Microsoft Defender for Endpoint. This protection brings together machine learning, big-data analysis, in-depth threat research, and the Microsoft cloud infrastructure to protect Android devices (or endpoints) in your organization.
Today, we are thrilled to announce the public preview of this new, enhanced anti-malware engine capability!
Changes to Android Threat names as depicted in the security center portal will be as under:
<Platform>.<Category>.<Family>.variant ----> [Threat Type]:[Platform]/[Malware Family].[Variant]?![Suffixes]?
Old Syntax New Syntax
There are no changes to the user experience aside from the threat naming:
To get started, an IT Admin needs to use Microsoft Endpoint Manager (MEM) – Intune – to manage deployments from Managed Google Play’s pre-production tracks for Android.
Use the recommended minimum version as 1.0.3825.0301. Sometime after GA, APKs older than version 1.0.3825.0301 would stop getting Antimalware protection, so it's recommended to plan for an upgrade.
We welcome your feedback and look forward to hearing from you! You can submit feedback through the Microsoft Defender Security Center or through the Microsoft 365 security center.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.