Windows Defender Advanced Threat Protection (Windows Defender ATP) is a new cloud security service that enables enterprise customers to detect, investigate, and respond to advanced threats on their networks.
It really enables you as an administrator to detect attacks on your most vulnerable systems: workstations. Attacks are detected almost instant en the service portal will give you recommended remediation, enables to you quarantine or block files, or even isolate machines from your enterprise network!
In this post I will guide you through the set-up and give you an example of an attack and response scenario. Continue reading “Securing the modern enterprise with Windows Defender Advanced Threat Protection”