Microsoft expands built-in protection in Defender for Endpoint

Microsoft has revealed the general availability of built-in protection in Defender for Endpoint that would offer better threat protection for enterprise endpoints, according to BleepingComputer. While only tamper protection for Defender for Endpoint users' tenants will be initially activated by built-in protection, Microsoft said that it will add more default settings soon. Microsoft also noted that Microsoft 365 Defender portal notifications on the feature's activation will be sent to customers who have yet to configure their enterprise environments' tamper protection. "Tamper protection will be turned on for your tenant, and will be applied to your organization's Windows devices. Whenever new devices are onboarded to Defender for Endpoint, built-in protection settings will be applied to any new devices running Windows," said Microsoft. However, built-in protection settings could also be modified or deactivated by Microsoft 365 admins, who could also exclude certain devices through a Microsoft Endpoint Manager profile or Security Management for Defender for Endpoint.