Microsoft Defender for Endpoints will automatically remove detected threats...

[sanjay kumar]

It became known that Microsoft intends to move its proprietary corporate platform Microsoft Defender for endpoints by default in fully automatic mode. This means that it will automatically process and remove all detected threats and suspicious files. The changes will take effect on February 16 this year.

According to the available data, the decision to change the default behavior of Microsoft Defender was made after research that showed that organizations using full automation are better at eliminating and containing various types of threats. Currently, Microsoft Defender for Endpoints runs in semi-automatic mode by default and in some cases prompts the user to confirm certain actions.

“Data collected and analyzed over the past year shows that organizations using full automation have removed 40% more malware samples than customers using lower levels of automation. Full automation also frees up critical security resources for our customers so they can focus on their strategic initiatives, ”Microsoft said in a statement.

Developers believe that customers using full Microsoft Defender automation are better at preventing the negative impact of malware. This is due to the fact that detected threats are processed automatically and no intervention of information security personnel is required to eliminate them.