Microsoft Releases Linux Endpoint Detection and Response Features
MrPlow writes in with a submission, via IRC, for TheMightyBuzzard.
Microsoft announced today that Microsoft Defender for Endpoint's detection and response (EDR) capabilities are now generally available on Linux servers.
EDR capabilities allow admins and security teams to spot attacks targeting or involving Linux servers in their environments almost in real-time with the help of alerts automatically aggregated as incidents based on attacker techniques and attribution.
This adds to the already existing preventative antivirus capabilities and the centralized reporting features available to admins via the Microsoft Defender Security Center.
[...] "If you are already running Microsoft Defender for Endpoint (Linux) preventive AV in production, your devices will seamlessly receive the new EDR capability as soon as you update the agent to version 101.18.53 or higher," Microsoft Senior Product Manager Tomer Hevlin said.
Do members of our community trust Microsoft for their Linux and Linux security needs?
Read more of this story at SoylentNews.