Microsoft Defender for Endpoint now supports live response capabilities on macOS and Linux

Microsoft Defender for Endpoint now supports live response capabilities for macOS and Linux. The functionality is in public preview, and it allows analysts to perform in-depth investigations of issues and to accept action in real-time. Defender for Endpoint is an enterprise tool for detecting and responding to threats and vulnerabilities. Microsoft announced preview back up for live response capabilities in a Tech Community post (via Bleeping Computer).

"With live response, y'all have the power to practise in-depth investigative work and take firsthand response actions to promptly contain identified threats -- in real-fourth dimension," explains Microsoft.

The aim of live response is to raise investigations past collecting data, running scripts, and sending suspicious entities for analysis. It also allows security experts to remediate threats and proactively hunt for emerging threats.

Alive response for macOS and Linux allows analysts to practise the following:

Run basic and advanced commands to investigate suspicious entities.

Collect files (such as malware samples, scripts output) for offline assay.

New: Trigger response actions on the device.

Upload any Bash script to their live response library, and then run information technology on the device to collect forensics testify and remediate malicious entities.

Microsoft too introduced new commands for the platforms, including enforcing network isolation, collecting an investigation package, and running an antivirus scan.

"Live response is designed to heighten investigations by enabling your security operations team to collect forensic data, run scripts, send suspicious entities for analysis, remediate threats, and proactively hunt for emerging threats," explains Microsoft's Israel Cohen-Pavon.

We may earn a commission for purchases using our links. Acquire more than.

The AT&T version of Surface Duo is now getting Android 11

It'southward here

The AT&T version of Surface Duo is now getting Android xi

After a very long wait, the original Surface Duo is now eligible to receive its over-the-air Os update to Android 11. Here is what is new and fixed with the biggest update yet for Microsoft'southward first dual-screen Android device.