Posted by: kurtsh | October 11, 2020

RELEASE: Microsoft Defender for Endpoint on Android now generally available (iOS in public preview)

imageBuried in our larger announcement about Microsoft Defender for Endpoint (formerly Microsoft Defender Advanced Threat Protection), was the announcement that our Android client is now released!

Microsoft Defender for Endpoint on Android is generally available, delivering the rich set of capabilities we announced in public preview, which include phishing and web protection, malware scanning, and additional breach prevention through integration with Microsoft Endpoint Manager and Conditional Access. These capabilities offer protection against some of the most sophisticated malware threats we’ve seen on the platform.

Since our public preview announcement, we have also updated how users can get the Microsoft Defender for Endpoint app on their Android devices. Now, eligible users can download Microsoft Defender for Endpoint from Google Play.

For additional information on how to get started, check out the documentation.

And yes, we also snuck in our announcement about the public preview/beta of the iOS client for Microsoft Defender for Endpoint.

imageWe’re excited to share that in the coming weeks, Microsoft Defender for Endpoint will be arriving in public preview for iOS.

For devices running iOS 11.0 and higher, Microsoft Defender for Endpoint offers:

  • Anti-phishing: Access to unsafe websites from SMS/text, WhatsApp, email, browsers, and other apps is instantly blocked. To do this, we leverage the Microsoft Defender SmartScreen service to help determine whether a URL is potentially malicious. If access to a malicious site is blocked, the device user gets a notification about this with the options to allow the connection, report it safe, or dismiss the notification. Security teams are notified about attempts to access malicious sites via an alert in the Microsoft Defender Security Center.
  • Blocking unsafe connections: The same Microsoft Defender SmartScreen technology is used to also block unsafe network connections that apps automatically might make on the user’s behalf without them knowing. Just as in the phishing example, the user is immediately informed that this activity is blocked and is given the same choices to allow it, report it as unsafe, or dismiss the notification. When these connections are attempted on a user’s device, security teams are notified of this via an alert in the Microsoft Defender Security Center. 
  • Custom indicators: Security teams can create custom indicators, giving them more fine-grained control over allowing and blocking URLs and domains users connect to from their iOS devices. This can be done in the Microsoft Defender Security Center and is an extension of our custom indicators capability already available for Windows.

Read the full announcement here:


%d bloggers like this: