Microsoft Defender for IoT -New Release (OT v22.2.4)

Microsoft is excited to announce a new software release of Microsoft Defender for IoT.
What's New?




Inventory and map 

Merge and Delete devices via device inventory

Last seen value in the device details pane is replaced by Last activity

Any user with Admin permissions will be able to delete devices via device inventory page

New protocol support 

Honeywell Discovery

Honeywell EUCN

Schneider TSAA 

ServiceNow integration 

Users can now query CVEs for specific device

Users can correlate alerts on Splunk with devices from the CMDB 


New alert columns with timestamp data - will be available on the sensor (cloud side will be available only on the next release)

Learning button will be displayed by default in the alerts page 


About Defender for IoT


Azure Defender for IoT provides agentless, network-layer security, provides security for diverse industrial equipment, and interoperates with Azure Sentinel and other SOC tools. 

Continuous asset discovery, vulnerability management, and threat detection for Internet of Things (IoT) devices, operational technology (OT) and Industrial Control Systems (ICS) can be deployed on-premises or in Azure-connected environments.
0 Replies