Microsoft Defender for Endpoint’s New Feature Can Protect Hacked, Unmanaged Windows Devices From Malware>
I Tech Post
Microsoft Defender is now rolling out a new feature on Windows to help organizations act fast in dealing with malware.

Microsoft has introduced a new feature that will be added to Microsoft Defender for Endpoints (MDE). This new capability will assist companies in preventing malware and attackers from leveraging compromised unmanaged devices to spread all over the network.

Microsoft Defender for Endpoint’s new managed threat hunting service provides proactive hunting, prioritization, and additional context and insights that further empower security operation centers (SOCs) to identify and respond to threats quickly and accurately.

The new feature called “Contain” gives network administrators the ability to contain unmanaged Windows devices on their networks in the event that a system on the network is being attacked by malicious threat actors through the deployment of destructive malware.

Unfortunately, the new feature of MDE can only be utilized if organizations are running Windows 10 up to its latest version on their devices. This means that despite having Microsoft Defender on a device, if it does not have Windows 10 and up, this feature cannot be used and the risk of infecting other networks will still be possible.
Link: https://www.itechpost.com/articles/111246/20220610/microsoft-defender-endpoints-new-feature-protect-hacked-unmanaged-windows-devices.htm