Yesterday, Microsoft announced a number of new security features which will be available in Windows 10 Creators Update. These include an improved Windows Defender with Advanced Threat Protection, the same Advanced Threat Protection extended to Office, and Windows Security Center which can manage them. Let's take a look at what these features are.
The following highlights were published by the Redmond giant.
- Enriched Detection. Methods and means attackers use are increasingly varied, complex and well-funded. The sensors we have today across the network traffic channeled through end points and the cloud are powerful. However, cyber threats won’t stop, and neither will we. With the Creators Update we will expand Windows Defender ATP sensors to detect threats that persist only in memory or kernel level exploits. This will enable IT administrators to monitor loaded drivers and in-memory activities, and to detect various patterns of injection, reflective loading, and in-memory modifications indicating potential kernel exploits.
- Enriched Intelligence. We already add on to our Microsoft Threat Intelligence (TI) with industry partners like FireEye iSIGHT Threat Intelligence. In the Creators Update, we’ll enable IT administrators to feed their own intelligence into the Windows Security Center for alerts on activities based on their own indicators of compromise. This added level of insight will enrich machine learning models to identify and block malware more quickly and better protect their unique environment.
- Enhanced Remediation. We will also deliver new remediation actions in Windows Defender ATP that will give IT administrators the tools to isolate machines, collect forensics, kill and clean running processes and quarantine or block files with a single click in the Windows Security Center and further reduce response time.
The Windows Analytics dashboard was mentioned, which should help IT administrators better manage and support Windows 10 devices. Customers will be able to create and collect their own telemetry data to track the devices in their organization.
Microsoft announced a new tool which will allow IT personnel to reconfigure devices to use modern UEFI mode instead of the legacy BIOS mode when supported. This is very convenient and time saving, because the operation can be done remotely. This ability is expected to be integrated with tools like System Center Configuration Manager (SCCM).
Yet another tool, Mobile Application Management gives the ability to control a BYOD (bring your own device) environment, without the device having to be enrolled in Mobile Device Management (MDM). The main purpose of the app is to keep the corporate data more secure by managing the list of apps which will have access to certain data. It should prevent the situation when someone copies private information from his work email and pastes it into a personal email.
These advanced security features will be available only for Windows 10 Enterprise customers with the Creators Update.
Windows 10 Creators Update, known as code name "Redstone 2" or version 1703 is expected to be released in early 2017. Some of these new features will become available for Insiders on the Fast Ring who run Windows 10 Enterprise (via).
Support us
Winaero greatly relies on your support. You can help the site keep bringing you interesting and useful content and software by using these options:
:)
^very informative comment
… so therefore approved.