Customers of Microsoft Defender for Endpoint have a wealth of knowledge available at their fingertips, enabling the most comprehensive view of the security of the estate. This wealth of knowledge is crucial, but it may not be always feasible – and definitely not always necessary – to hover in front of the Microsoft 365 Defender console just to bask in the golden glow of the wealth. This is where the alerting system comes into focus.
One area that piques interest for alerting is when Microsoft released coverage for a Zero Day. This is easy to setup and highly recommended.