Microsoft Boosts Defender for Endpoint Default Protection
Microsoft recently announced that built-in protection is now generally available for all devices onboarded to Defender for Endpoint. This will enable better protection for enterprise endpoints against advanced and emerging threats, including ransomware attacks.
Initially on roll-out, built-in protection will include turning tamper protection on for your tenant, with other default settings coming soon.
This announcement comes on the tail of Microsoft beginning to toggle tamper protection for all new customers with Defender for Endpoint Plan 2 or Microsoft 365 E5 licenses. This blocks other apps from changing the settings for real-time and cloud-delivered protection, behavior monitoring, and Defender components like IOfficeAntivirus (IOAV) which manages the detection of suspicious Internet-downloaded files.
For any customers who haven’t yet configured tamper protection, they will soon receive Microsoft 365 Defender portal notifications alerting them the feature will be turned on. “Tamper protection will be turned on for your tenant, and will be applied to your organization’s Windows devices,” Microsoft says on its support portal. “Whenever new devices are onboarded to Defender for Endpoint, built-in protection settings will be applied to any new devices running Windows.”
If you need help managing your built-in protection settings or want to better understand this feature, give 2W Tech a call today. We are a technology solutions provider and Microsoft solutions provider and have IT Consultants on staff that would be happy to discuss Defender for Endpoint with you.