In addition to the various independent security solutions, Microsoft offers Microsoft Defender. This Microsoft Defender XDR service (formerly M365 Defender) is an integrated solution that provides elements from all security tools including Microsoft Defender for Endpoint, Microsoft Defender for Office 365, Microsoft Defender for Identity, and Microsoft Defender for Cloud Apps. These solutions bring together common mechanisms and concepts such as detection, investigation, and automated response. This console will consolidate alerts and aggregated incidents from the various services.
- General Availability of the multi-tenant management experience in Microsoft Defender XDR.This scenario covers the needs of Managed Security Service Providers (MSSP) or companies with multiple tenants for each of their subsidiaries. The feature makes it possible to obtain a unified view of alerts and incidents across all tenants.
- Microsoft Defender Threat Intelligence (MDTI) hasobtained ISO 27001, ISO 27017, and ISO 27018 certifications
- (GA) Dark Mode is now available in the Microsoft Defender portal. In the Defender portal, at the top right of the home page, select Dark mode. Select Light mode to return to the default color mode.
- (GA) Assigning severity to incidents, assigning an incident to a group, and the Go hunt option from the attack story graph are now in general availability.
- (Preview) Custom detection rules in the Microsoft Graph Security API are now available. You can create custom Advanced Hunting detection rules specific to your organization to proactively monitor for threats and take action.
More information on:What's new in Microsoft Defender XDR | Microsoft Lear
Read also :
Your dynamic snippet will be displayed here... This message is shown because you have not defined the filter and template to use.