What's New in Microsoft Defender for Endpoint?
Security
14. Aug 2023 06:00

What's New in Microsoft Defender for Endpoint?

von HubSite 365 über Peter Rising [MVP]

Microsoft MVP | Author | Speaker | YouTuber

AdministratorSecurityLearning SelectionM365 Admin

In this video, we take a look at what's new in Microsoft Defender for Endpoint, including: The eBPF-based sensor for Microsoft Defender for Endpoint on Linux

The recent updates in Microsoft Defender for Endpoint offer several new features.

  • The eBPF-based sensor for Microsoft Defender for Endpoint on Linux has now been made available for public preview on all supported Linux devices.
  • Management of endpoint security policies in Defender for Endpoint is also now available for public review.
  • You can now directly configure security settings in Microsoft 365 Defender.
  • A new file page is now available in Defender for Endpoint, including detailed information about files and additional capabilities.

For more information, here are some useful resources:

A Closer Look at Microsoft Defender for Endpoint

Microsoft Defender for Endpoint is a comprehensive, cloud-delivered endpoint security solution. It leverages risk-based vulnerability management and assessment to detect threats that could impact an organization. Other methods of detection include attack surface reduction, next-generation protection, endpoint detection and response (EDR), automatic investigation and remediation, managed hunting services, and rich APIs, contributing to an integrated security posture in your infrastructure.

Learn about What's New in Microsoft Defender for Endpoint?

Microsoft Defender for Endpoint is a comprehensive security solution for endpoints. It offers a wide range of features, including the ability to monitor and protect endpoints from potential threats, detect and respond to malicious activity, and proactively respond to security incidents. The latest version of Microsoft Defender for Endpoint includes a variety of new features, such as an eBPF-based sensor for Linux devices, the ability to manage endpoint security policies, a new file page with detailed information on files, and the ability to take response actions on files. These new features help to ensure that endpoints are better protected from potential threats and malicious activity.

The eBPF-based sensor for Microsoft Defender for Endpoint on Linux is now available for public preview on all supported Linux devices. This feature enables Linux devices to leverage the same sensor technology as Windows devices, allowing for better protection from potential threats. The ability to manage endpoint security policies in Microsoft Defender for Endpoint is also now available in public preview. This allows organizations to more easily configure security settings directly in Microsoft 365 Defender.

In addition, a new file page is now available in Microsoft Defender for Endpoint. This page provides detailed information about files, including file details, file content, and capabilities. This makes it easier to investigate and respond to file alerts. Finally, response actions can now be taken on files in Microsoft Defender for Endpoint. This helps to ensure that endpoints are better protected from potential threats and malicious activity.

To learn more about the new features in Microsoft Defender for Endpoint, please visit the following resources: What's new in Microsoft Defender for Endpoint (learn.microsoft.com/en-us/microsoft-365…); Use eBPF-based sensor for Microsoft Defender for Endpoint on Linux (learn.microsoft.com/en-us/microsoft-365…); Manage endpoint security policies in Microsoft Defender for Endpoint (learn.microsoft.com/en-us/microsoft-365…); Investigate a file (learn.microsoft.com/en-us/microsoft-365…); and Take response actions on a file (learn.microsoft.com/en-us/microsoft-365…).

Microsoft Defender for Endpoint is an essential security solution for all organizations. With the latest version, organizations can take advantage of the new features to better protect their endpoints from potential threats and malicious activity.

More links on about What's New in Microsoft Defender for Endpoint?

What's new in Microsoft Defender for Endpoint
5 days ago — Microsoft offers a mobile network protection feature in Defender for Endpoint that helps organizations identify, assess, and remediate endpoint ...
What's new in Microsoft Defender for Endpoint on Windows
Jul 18, 2023 — Enhanced Microsoft Defender for Endpoint's ability to identify and intercept ransomware and advanced attacks. The Contain feature now supports ...
What's new in Microsoft 365 Defender
Jul 24, 2023 — A new URL and domain page is now available in Microsoft 365 Defender. The updated URL and domain page provides a single place to view all the ...
Microsoft Defender for Endpoint
Jun 14, 2023 — Microsoft Defender for Endpoint's new managed threat hunting service provides proactive hunting, prioritization, and additional context and ...
What's new in Microsoft Defender for Endpoint on Linux
Jul 26, 2023 — May-2023 Build: 101.98.64 | Release version: 30.123032.19864.0 · Health message improvements to capture details about auditd failures.
What's new in Microsoft Defender for Endpoint on Mac
Jun 29, 2023 — The command-line tool now supports restoring quarantined files to a location other than the one where the file was originally detected.
What's new in Microsoft Defender for Endpoint on Android
Learn about the major changes for previous versions of Microsoft Defender for Endpoint on Android.
What's new in Microsoft Defender Vulnerability ...
4 days ago — Microsoft Defender Vulnerability Management permissions are now integrated with Microsoft 365 Defender Unified role-based access control (RBAC).
Microsoft Defender Antivirus security intelligence and ...
For more information, see Microsoft Defender for Endpoint update for EDR Sensor and What's new in Microsoft Defender for Endpoint on Windows.

Keywords

Microsoft Defender for Endpoint, eBPF-based Sensor, Endpoint Security Policies, File Investigation, File Response Actions, M365