Alert & machine reporting - Power BI content pack [Internal Preview]
WDATP Alert & machine statistics data is now consumable via a Power BI content pack and displays:
Clicking on any of the tiles will take you to the respective tab that drills down further into the data:
Note: Access to this feature is currently limited within Internal Preview and not [yet] fully exposed via the WDATP portal to all approved users on the MSIT tenant
Tagging in portal [Internal Preview]
We now support adding custom tags to machines (e.g. SAWs, etc.), to support easier filtering and focusing on customer-defined grouping.
Filter the Machines list by custom tag/s
Managing and applying custom tags to machines
Custom tags appear on the Machine page
"Restrict code execution" response action [Internal Preview]
In this update, we're further enhancing response capabilities and adding the ability to disrupt & contain attacker activity by applying a lock down policy on potentially compromised machines to prevent execution of unknown, malicious programs.
The new "Restrict code execution:" response action will be available in the portal for Windows 10 machines running the Creators Fall (RS3) update.
To use this new capability:
Note: undoing execution restriction is also possible from the console by opening the action menu and selecting "Undo restrict code execution" on a machine the action was previously applied on.
We'd love to hear your feedback on the new features - that's it for this time!
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.