Windows Defender Advanced Threat Protection Uses Behavioral Sensors

Windows Defender Advanced Threat Protection Aims for Enterprise SecurityMicrosoft is launching an advanced version of its Windows Defender anti-malware system. Called Windows Defender Advanced Threat Protection, it’s aimed at the enterprise level, with an eye to countering the increasingly sophisticated digital threats that organizations face.

In a blog post announcing the new platform, Microsoft asserts that it builds on the considerable security framework of Windows 10, which offers sophisticated features such as biometric authentication via Windows Hello. Much of Windows Defender Advanced Threat Protection’s attack detection revolves around data analytics, and, like other digital threat detection platforms such as NuData’s NuDetect, it uses “behavioral sensors” to help assess potential risks.

When attacks are detected, the platform offers response recommendations, including a “cloud-based detonation service” that allows administrators to submit compromised files and sites to remote virtual machines for further investigation. Moreover, the platform operates entirely from the cloud, ensuring that clients’ own infrastructure will not be at risk and won’t require its own maintenance.

Partly in recognition of its advanced security features, Windows 10 is already being used by organizations handling sensitive data such as the US Department of Defense; and with Windows Defender Advanced Threat Protection already securing 500,000 endpoints via early adopters, this too could become a significant security platform going forward.

(Originally posted on Mobile ID World)