{"id":13093,"date":"2019-08-19T11:20:59","date_gmt":"2019-08-19T18:20:59","guid":{"rendered":"https:\/\/www.microsoft.com\/insidetrack\/blog\/?p=13093"},"modified":"2024-01-19T12:03:40","modified_gmt":"2024-01-19T20:03:40","slug":"microsoft-defender-atps-antivirus-capabilities-boost-malware-protection","status":"publish","type":"post","link":"https:\/\/www.microsoft.com\/insidetrack\/blog\/microsoft-defender-atps-antivirus-capabilities-boost-malware-protection\/","title":{"rendered":"Microsoft Defender ATP&#8217;s antivirus capabilities boost malware protection"},"content":{"rendered":"<div class=\"m-alert f-error\" role=\"alert\">\n<div>\n<div class=\"c-glyph glyph-incident-triangle\" aria-label=\"Error message\"><\/div>\n<p class=\"c-paragraph\">This content has been archived, and while it was correct at time of publication, it may no longer be accurate or reflect the current situation at Microsoft.<\/p>\n<\/div>\n<\/div>\n<p><img loading=\"lazy\" decoding=\"async\" width=\"300\" height=\"112\" class=\"size-medium wp-image-7498 alignright\" style=\"margin-top: 0px;\" src=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2021\/10\/ms-digital-technical-stories-300x112.png\" alt=\"Microsoft Digital technical stories\" srcset=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2021\/10\/ms-digital-technical-stories-300x112.png 300w, https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2021\/10\/ms-digital-technical-stories.png 500w\" sizes=\"(max-width: 300px) 100vw, 300px\" \/>Today\u2019s antimalware solutions must help protect against and combat increasingly sophisticated, malicious software. Frequently, traditional antimalware strategies put IT security professionals in the position of being reactive to attacks, instead of proactively preventing them; they don\u2019t adequately address the challenges presented by a more mobile\u2014and modern\u2014workplace. More than ever, it\u2019s important to have security solutions in place that are as agile and innovative as the new threats that are constantly emerging.<\/p>\n<p>One of our missions at Microsoft Digital is to empower the modern enterprise by providing a trusted, more secure computing environment. We\u2019ve protected client devices against malware for years, previously using traditional, sometimes third-party antivirus solutions, installed on client devices and managed through Microsoft System Center Configuration Manager. Windows 10, however, introduced a new, more modern way to protect client devices. Windows Defender Advanced Threat Protection (ATP) is the result of a complete redesign in the way Microsoft provides client protection. It is agentless, built directly into Windows 10, and was designed to learn, grow, and adapt to help security professionals stay ahead of incoming attacks.<\/p>\n<p>With Windows 10, we can use the built-in security features to enable malware protection and other critical security capabilities that help protect devices right from the start. Microsoft Defender ATP is a unified platform for Windows protection that includes a broad range of capabilities, some of which include:<\/p>\n<ul class=\"c-list\">\n<li>Antivirus<\/li>\n<li>Exploit protection<\/li>\n<li>Attack surface reduction<\/li>\n<li>Application control<\/li>\n<li>Hardware-based isolation<\/li>\n<\/ul>\n<p>Before we take a closer look at the security features in Microsoft Defender ATP, let\u2019s discuss the evolution of malware protection in Windows.<\/p>\n<h2><strong>Antimalware journey in<\/strong> Windows<\/h2>\n<p>Over the years, antimalware protection for Microsoft Windows has evolved from separate installations of System Center Endpoint Protection and third-party antivirus software to Microsoft Defender ATP and its antivirus capability. Let\u2019s take a quick look at how\u2014and, more importantly, why\u2014we transitioned to it.<\/p>\n<h3><strong>Windows 7: System Center<\/strong> Endpoint<strong> Protection and third-party solutions<\/strong><\/h3>\n<p>Windows 7 didn\u2019t include a built-in antimalware solution, so we installed System Center Endpoint Protection on client devices across Microsoft, using Microsoft System Center Configuration Manager to update and distribute malware definitions. We still use System Center Endpoint Protection to help protect earlier versions of Windows in our environment.<\/p>\n<h3><strong>Windows 8: System Center<\/strong> Endpoint<strong> Protection updated to manage built-in antivirus<\/strong><\/h3>\n<p>Windows Defender Antivirus was introduced in Windows 8 to help protect client devices, but it was mainly targeted to consumers, rather than large companies. Under the hood, though, it provided enterprise-grade antimalware capabilities. At the time, Configuration Manager, which we use to manage System Center Endpoint Protection, couldn\u2019t be used to manage Windows Defender Antivirus in Windows 8. Because we needed the additional capabilities, like telemetry and easier management of security-related tasks, we continued to install System Center Endpoint Protection on the Windows 8 devices in our environment.<\/p>\n<p>Based on this, we encouraged the System Center Configuration Manager team to enhance it to be compatible with Windows Defender Antivirus. This way, we, and other security professionals, could take full advantage of the combined benefits of both applications. We wouldn\u2019t need additional infrastructure to install or update antimalware and would spend less time and effort managing agent and definition updates. That could save us time and effort\u2014and it offered a promising path toward more modern ways to manage, and even extend, client malware protection for the enterprise.<\/p>\n<h3>Windows 10: Moved from System Center Endpoint Protection to Microsoft Defender ATP<\/h3>\n<p>With Windows 10, and the introduction of Microsoft Defender ATP, the enterprise grade antivirus capabilities we need are built directly into the operating system. Microsoft Defender ATP works seamlessly with Configuration Manager to deliver enterprise management and policy setting capabilities along with a collection of telemetry to enforce compliance. The antivirus capabilities are dynamic and are backed by cloud intelligence that helps defend us from known and unknown malware threats, even at first sight, instead of relying on virus signatures that have to be updated after new threats are identified.<\/p>\n<p>Now that our malware protection is part of Microsoft Defender ATP, intelligent endpoint behavioral sensors and AI are doing the scanning for known viruses. We have cloud security analytics, and threat intelligence that help us quickly detect and respond to threats in our environment. We\u2019re also excited that\u2014in addition to the antivirus capabilities in Microsoft Defender ATP\u2014we can use the <a href=\"https:\/\/docs.microsoft.com\/en-us\/windows\/security\/threat-protection\/windows-firewall\/windows-firewall-with-advanced-security\" target=\"_blank\" rel=\"noopener\">built-in firewall<\/a> and other security-related features, including:<\/p>\n<ul class=\"c-list\">\n<li><a href=\"https:\/\/docs.microsoft.com\/en-us\/mem\/configmgr\/protect\/deploy-use\/create-deploy-exploit-guard-policy\" target=\"_blank\" rel=\"noopener\">Exploit protection<\/a>, which uses Microsoft Intelligent Security Graph (ISG) capabilities to identify active exploits and common behaviors to stop these types of attacks at various stages. Although underlying vulnerabilities, delivery mechanisms, and payload can differ and evolve, there\u2019s a core set of behaviors and vectors to which many different attacks adhere. By correlating streams of events to various malicious behaviors with the ISG, Microsoft Defender ATP\u2019s exploit protection has the capability and controls to handle emerging threats. The four components of Microsoft Defender ATP\u2019s exploit protection are:\n<ul class=\"c-list\">\n<li><a href=\"https:\/\/docs.microsoft.com\/en-us\/windows\/security\/threat-protection\/windows-defender-exploit-guard\/attack-surface-reduction-exploit-guard?ocid=cx-blog-mmpc\" target=\"_blank\" rel=\"noopener\">Attack Surface Reduction (ASR)<\/a>: A set of controls that companies can enable to prevent malware from getting on computers by blocking Office-, script-, and email-based threats.<\/li>\n<li><a href=\"https:\/\/docs.microsoft.com\/en-us\/microsoft-365\/security\/defender-endpoint\/enable-network-protection?view=o365-worldwide\" target=\"_blank\" rel=\"noopener\">Network protection<\/a>: Protects the endpoint against web-based threats by blocking any outbound process on the device to untrusted hosts\/IP through Windows Defender SmartScreen.<\/li>\n<li><a href=\"https:\/\/cloudblogs.microsoft.com\/microsoftsecure\/2017\/10\/23\/stopping-ransomware-where-it-counts-protecting-your-data-with-controlled-folder-access\/?ocid=cx-blog-mmpc?source=mmpc\" target=\"_blank\" rel=\"noopener\">Controlled folder access<\/a>: Protects sensitive data from ransomware by blocking untrusted processes from accessing your protected folders.<\/li>\n<li><a href=\"https:\/\/docs.microsoft.com\/en-us\/mem\/configmgr\/protect\/deploy-use\/create-deploy-exploit-guard-policy\" target=\"_blank\" rel=\"noopener\">Exploit protection<\/a>: A set of exploit mitigations (replacing the Enhanced Mitigation Experience Toolkit) that can be easily configured to protect your system and applications.<\/li>\n<\/ul>\n<\/li>\n<li><a href=\"https:\/\/docs.microsoft.com\/en-us\/windows\/security\/threat-protection\/windows-defender-application-control\" target=\"_blank\" rel=\"noopener\">Application control<\/a> helps mitigate security threats by restricting the applications that users can run and the code that runs in the system core (kernel). Using it, you can also create policies to block unsigned scripts and MSIs, and force Windows PowerShell to run in Constrained Language Mode.<\/li>\n<li><a href=\"https:\/\/cloudblogs.microsoft.com\/microsoftsecure\/2017\/10\/23\/hardening-the-system-and-maintaining-integrity-with-windows-defender-system-guard\/\" target=\"_blank\" rel=\"noopener\">Device integrity<\/a> uses multiple enterprise-related hardware and software security features to maintain and verify the integrity of the device. Specifically, it helps protect the integrity of the boot process and system runtime from being compromised in a way that would enable advanced malware and exploits from hiding from system defenses.<\/li>\n<\/ul>\n<p>Let\u2019s take a closer look at what we\u2019ve experienced and some of the benefits we\u2019ve seen since we started using Microsoft Defender ATP\u2019s next generation protection capabilities for malware protection at Microsoft.<\/p>\n<h2>Benefits of using advanced malware protection available in Microsoft Defender ATP<\/h2>\n<p>By using an antivirus that\u2019s built into Windows 10, along with the additional antivirus capabilities from Microsoft Defender ATP, many policy management and other tasks we needed to perform to protect client devices in our environment are no longer necessary or have been optimized. We no longer need to deploy and manage third-party or standalone malware protection. Everything we need is built into the operating system and is updated through Windows Update. We don\u2019t need to buy or maintain servers just to run antimalware or other hardware-operations tasks\u2014tasks that once took up to 60 percent of our time. Now, we can capture telemetry, act on it, and spend more time on security instead of operations. We\u2019re saving both time and money that we used to spend in planning, testing, installing, and upgrading antimalware for our environment.<\/p>\n<p>In addition to those savings, our antivirus capabilities now provide additional protections that extend beyond scanning a device\u2019s file system for malicious files and behaviors. Advanced analytics, machine learning, and AI are constantly improving recognition, and so we can block new and never seen before threats on first sight without signature updates.<\/p>\n<h3>\u00a0Cloud-delivered<strong> protection<\/strong><\/h3>\n<p>Microsoft Defender ATP provides cloud-delivered protection for near-instant detection and blocking of new and emerging threats. Dedicated protection is updated based on machine learning, human and automated big-data analysis, and in-depth threat resistance research.<\/p>\n<h3>\u00a0Always-on<strong> scanning, using advanced file and process behavior monitoring<\/strong><\/h3>\n<p>Microsoft Defender ATP\u2019s next generation protection capabilities provide always-on scanning, using advanced file and process behavior monitoring and other heuristics (also known as \u201creal-time protection\u201d). With advanced in-memory capabilities, as well as Attack Surface Reduction controls, and network protection capabilities, it can also prevent file-less malware.<\/p>\n<h3>\u00a0Blocking<strong> malware at first sight<\/strong><\/h3>\n<p>By using a new antivirus capability from Microsoft Defender ATP called \u201cBlock at First Sight,\u201d we have a new critical protection capability. Approximately 96 percent of all malware files detected and blocked by our antivirus capabilities are observed only once in the world. If a threat is unknown and metadata about the threat isn\u2019t enough, we\u2019ve configured the antivirus features to automatically collect and scan the sample in the Microsoft cloud to analyze it for zero-day threats. This includes running the suspicious file in a virtualized environment.<\/p>\n<h3><strong>\u00a0<\/strong><strong>Simplified<\/strong> management<\/h3>\n<p>We\u2019ve found that policy orchestration through the Microsoft Defender ATP portal is straightforward and uses fewer system resources and processes than solutions that require more orchestration. Fewer system resources and processes mean better computer performance.<\/p>\n<h4><strong>\u00a0<\/strong><strong>Security<\/strong> updates<\/h4>\n<p>Now, we have an improved process for keeping antimalware on our client PCs up to date. Even if a user hasn\u2019t signed in to the corporate network for a while, Windows Update will keep Microsoft Defender ATP\u2019s next generation protection capabilities up to date. We don\u2019t have to worry whether a server is delivering updates, or if it\u2019s deploying the solution to the endpoints, because Windows Update automatically keeps the client up to date.<\/p>\n<p>Additionally, the datacenter servers that supported installation and updates of client components were taken down. We don\u2019t need to buy or maintain servers just to run antimalware or other hardware-operations tasks\u2014tasks that once took up to 60 percent of our time.<\/p>\n<h4><strong>\u00a0<\/strong><strong>Using<\/strong> exclusion<strong> lists for better client performance<\/strong><\/h4>\n<p>Since using Microsoft Defender ATP\u2019s next generation protection capabilities, we haven\u2019t had to create broad exclusion lists, like those we used with third-party antivirus products to help us preserve user productivity and device performance. We now have the flexibility to allow users to exclude specific trusted files, processes, and directories for better performance. For example, excluding certain Windows files from antimalware scanning can make Windows start more quickly. Most Microsoft employees have administrator permissions on their local computers, so they can configure their own device because they know best what tools and files they\u2019re using. This is particularly important at Microsoft because of the number of developers and test environments\u2014we don\u2019t want to interrupt compilers during malware checks, because the compilers would need to start all over again. A developer can request &lt;compile name&gt;.exe as an exception in Microsoft Defender ATP to prevent interference.<\/p>\n<h4><strong>Microsoft Defender ATP\u2019s<\/strong> next<strong> generation protection capabilities in the datacenter<\/strong><\/h4>\n<p>We also use Windows Defender ATP\u2019s antivirus capabilities on Windows Server 2016 in the datacenter. The functionality, configuration, and management are mostly the same for Windows 10 and Windows Server 2016, with only a few key differences:<\/p>\n<ul class=\"c-list\">\n<li>In Windows Server 2016, automatic exclusions are applied based on your defined server role.<\/li>\n<li>In Windows Server 2016, the antivirus capability won\u2019t disable itself if you\u2019re running another antivirus product.<\/li>\n<\/ul>\n<p><em>Note: For a list of server-related exclusions, see the <\/em><a href=\"https:\/\/social.technet.microsoft.com\/wiki\/contents\/articles\/953.microsoft-anti-virus-exclusion-list.aspx\" target=\"_blank\" rel=\"noopener\"><em>Microsoft Anti-Virus Exclusion List<\/em><\/a><em> on the TechNet Wiki.<\/em><\/p>\n<h2><strong>One solution to<\/strong> protect,<strong> detect, and respond to advanced attacks<\/strong><\/h2>\n<p>Microsoft Defender ATP\u2019s next generation protection capabilities have provided excellent results as we\u2019ve seen in our own environment and reflected in industry test scores. It\u2019s easier to manage, there\u2019s nothing to deploy, and with automated updates, we\u2019re saving time and costs over what we used to see in antimalware-related maintenance, upgrades, servers, and operational tasks. Beyond offering advanced malware protection, Microsoft Defender ATP has been a game changer in how we protect client devices from cyber threats. With Microsoft Defender ATP, the power of the Windows security stack is providing preventative protection\u2014it detects attacks and zero-day exploits, and we have centralized management for our end-to-end security lifecycle.<\/p>\n<p>Microsoft Defender ATP detects advanced attacks and data breaches and automates security incidents. Using it, we have the intelligence and tools to investigate and mitigate threats within minutes, instead of the days or weeks it used to take. If you\u2019re ready to learn more about how Microsoft Defender ATP can improve the security posture of your organization, you can download the <a href=\"https:\/\/info.microsoft.com\/ATPInformationKit-Registration.html\" target=\"_blank\" rel=\"noopener\">Windows Defender Advanced Threat Protection Information Kit<\/a>.<\/p>\n<h2><img loading=\"lazy\" decoding=\"async\" width=\"300\" height=\"81\" class=\"alignnone size-medium wp-image-7482\" src=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2021\/10\/related_links-300x81.png\" alt=\"Related links\" srcset=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2021\/10\/related_links-300x81.png 300w, https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2021\/10\/related_links.png 500w\" sizes=\"(max-width: 300px) 100vw, 300px\" \/><\/h2>\n<ul class=\"c-list\">\n<li><a href=\"https:\/\/docs.microsoft.com\/en-us\/windows\/security\/threat-protection\/overview-of-threat-mitigations-in-windows-10\" target=\"_blank\" rel=\"noopener\">Mitigate threats by using Windows 10 security features<\/a><\/li>\n<li><a href=\"https:\/\/www.microsoft.com\/en-us\/windowsforbusiness\/default.aspx\" target=\"_blank\" rel=\"noopener\">Upgrade to Windows 10<\/a><\/li>\n<li><a href=\"https:\/\/docs.microsoft.com\/en-us\/windows\/security\/threat-protection\/device-guard\/introduction-to-device-guard-virtualization-based-security-and-windows-defender-application-control\" target=\"_blank\" rel=\"noopener\">Introduction to Windows Defender Device Guard: virtualization-based security and Windows Defender Application Control<\/a><\/li>\n<li><a href=\"https:\/\/www.microsoft.com\/security\/portal\/mmpc\/default.aspx\" target=\"_blank\" rel=\"noopener\">Windows Defender Security Intelligence<\/a><\/li>\n<li><a href=\"https:\/\/www.microsoft.com\/en-us\/security\/technology\/threat-protection\" target=\"_blank\" rel=\"noopener\">Microsoft Secure<\/a><\/li>\n<li><a href=\"https:\/\/www.microsoft.com\/security\/blog\/2018\/03\/22\/why-windows-defender-antivirus-is-the-most-deployed-in-the-enterprise\/\" target=\"_blank\" rel=\"noopener\">Why Windows Defender Antivirus is the most deployed in the enterprise<\/a><\/li>\n<li><a href=\"https:\/\/www.microsoft.com\/security\/blog\/2018\/02\/14\/how-artificial-intelligence-stopped-an-emotet-outbreak\/\" target=\"_blank\" rel=\"noopener\">How artificial intelligence stopped an Emotet outbreak<\/a><\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>This content has been archived, and while it was correct at time of publication, it may no longer be accurate or reflect the current situation at Microsoft. Today\u2019s antimalware solutions must help protect against and combat increasingly sophisticated, malicious software. Frequently, traditional antimalware strategies put IT security professionals in the position of being reactive to [&hellip;]<\/p>\n","protected":false},"author":146,"featured_media":13095,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"_hide_featured_on_single":false,"_show_featured_caption_on_single":true,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":true,"jetpack_social_options":{"image_generator_settings":{"template":"highway","enabled":false},"version":2}},"categories":[1],"tags":[],"coauthors":[674],"class_list":["post-13093","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-uncategorized","m-blog-post"],"jetpack_publicize_connections":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v23.7 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Microsoft Defender ATP&#039;s antivirus capabilities boost malware protection - Inside Track Blog<\/title>\n<meta name=\"description\" content=\"Microsoft Defender ATP&#039;s next generation protection capabilities in Windows 10 helps meet your antimalware, antivirus, and similar security needs.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/microsoft-defender-atps-antivirus-capabilities-boost-malware-protection\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Microsoft Defender ATP&#039;s antivirus capabilities boost malware protection - Inside Track Blog\" \/>\n<meta property=\"og:description\" content=\"Microsoft Defender ATP&#039;s next generation protection capabilities in Windows 10 helps meet your antimalware, antivirus, and similar security needs.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/microsoft-defender-atps-antivirus-capabilities-boost-malware-protection\/\" \/>\n<meta property=\"og:site_name\" content=\"Inside Track Blog\" \/>\n<meta property=\"article:published_time\" content=\"2019-08-19T18:20:59+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2024-01-19T20:03:40+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2024\/01\/5628-wordpress-hero.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1040\" \/>\n\t<meta property=\"og:image:height\" content=\"585\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Inside Track \u2013 retired stories\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Inside Track \u2013 retired stories\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"10 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/microsoft-defender-atps-antivirus-capabilities-boost-malware-protection\/\",\"url\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/microsoft-defender-atps-antivirus-capabilities-boost-malware-protection\/\",\"name\":\"Microsoft Defender ATP's antivirus capabilities boost malware protection - Inside Track Blog\",\"isPartOf\":{\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/microsoft-defender-atps-antivirus-capabilities-boost-malware-protection\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/microsoft-defender-atps-antivirus-capabilities-boost-malware-protection\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2024\/01\/5628-wordpress-hero.jpg\",\"datePublished\":\"2019-08-19T18:20:59+00:00\",\"dateModified\":\"2024-01-19T20:03:40+00:00\",\"author\":{\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/#\/schema\/person\/59e5f7b07dae629412c990cc1a63b575\"},\"description\":\"Microsoft Defender ATP's next generation protection capabilities in Windows 10 helps meet your antimalware, antivirus, and similar security needs.\",\"breadcrumb\":{\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/microsoft-defender-atps-antivirus-capabilities-boost-malware-protection\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.microsoft.com\/insidetrack\/blog\/microsoft-defender-atps-antivirus-capabilities-boost-malware-protection\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/microsoft-defender-atps-antivirus-capabilities-boost-malware-protection\/#primaryimage\",\"url\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2024\/01\/5628-wordpress-hero.jpg\",\"contentUrl\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2024\/01\/5628-wordpress-hero.jpg\",\"width\":1040,\"height\":585,\"caption\":\"Microsoft Defender ATP's next generation protection capabilities in Windows 10 helps meet your antimalware, antivirus, and similar security needs.\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/microsoft-defender-atps-antivirus-capabilities-boost-malware-protection\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Microsoft Defender ATP&#8217;s antivirus capabilities boost malware protection\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/#website\",\"url\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/\",\"name\":\"Inside Track Blog\",\"description\":\"How Microsoft does IT\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/#\/schema\/person\/59e5f7b07dae629412c990cc1a63b575\",\"name\":\"Inside Track \u2013 retired stories\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/#\/schema\/person\/image\/ee0de87c339052d5d84852473bd7f213\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/24a8c329ab32afd1bc23fd1658d1acc2?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/24a8c329ab32afd1bc23fd1658d1acc2?s=96&d=mm&r=g\",\"caption\":\"Inside Track \u2013 retired stories\"},\"description\":\"The content on this page was crafted to highlight a specific moment in time or the solutions that have led us to where we are today. It offers valuable insights into our journey and the progress made over the years. Check out the Inside Track blog page for our up-to-date stories around Microsoft.\",\"url\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/author\/insidetrackarchive\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Microsoft Defender ATP's antivirus capabilities boost malware protection - Inside Track Blog","description":"Microsoft Defender ATP's next generation protection capabilities in Windows 10 helps meet your antimalware, antivirus, and similar security needs.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.microsoft.com\/insidetrack\/blog\/microsoft-defender-atps-antivirus-capabilities-boost-malware-protection\/","og_locale":"en_US","og_type":"article","og_title":"Microsoft Defender ATP's antivirus capabilities boost malware protection - Inside Track Blog","og_description":"Microsoft Defender ATP's next generation protection capabilities in Windows 10 helps meet your antimalware, antivirus, and similar security needs.","og_url":"https:\/\/www.microsoft.com\/insidetrack\/blog\/microsoft-defender-atps-antivirus-capabilities-boost-malware-protection\/","og_site_name":"Inside Track Blog","article_published_time":"2019-08-19T18:20:59+00:00","article_modified_time":"2024-01-19T20:03:40+00:00","og_image":[{"width":1040,"height":585,"url":"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2024\/01\/5628-wordpress-hero.jpg","type":"image\/jpeg"}],"author":"Inside Track \u2013 retired stories","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Inside Track \u2013 retired stories","Est. reading time":"10 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/microsoft-defender-atps-antivirus-capabilities-boost-malware-protection\/","url":"https:\/\/www.microsoft.com\/insidetrack\/blog\/microsoft-defender-atps-antivirus-capabilities-boost-malware-protection\/","name":"Microsoft Defender ATP's antivirus capabilities boost malware protection - Inside Track Blog","isPartOf":{"@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/microsoft-defender-atps-antivirus-capabilities-boost-malware-protection\/#primaryimage"},"image":{"@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/microsoft-defender-atps-antivirus-capabilities-boost-malware-protection\/#primaryimage"},"thumbnailUrl":"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2024\/01\/5628-wordpress-hero.jpg","datePublished":"2019-08-19T18:20:59+00:00","dateModified":"2024-01-19T20:03:40+00:00","author":{"@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/#\/schema\/person\/59e5f7b07dae629412c990cc1a63b575"},"description":"Microsoft Defender ATP's next generation protection capabilities in Windows 10 helps meet your antimalware, antivirus, and similar security needs.","breadcrumb":{"@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/microsoft-defender-atps-antivirus-capabilities-boost-malware-protection\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.microsoft.com\/insidetrack\/blog\/microsoft-defender-atps-antivirus-capabilities-boost-malware-protection\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/microsoft-defender-atps-antivirus-capabilities-boost-malware-protection\/#primaryimage","url":"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2024\/01\/5628-wordpress-hero.jpg","contentUrl":"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2024\/01\/5628-wordpress-hero.jpg","width":1040,"height":585,"caption":"Microsoft Defender ATP's next generation protection capabilities in Windows 10 helps meet your antimalware, antivirus, and similar security needs."},{"@type":"BreadcrumbList","@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/microsoft-defender-atps-antivirus-capabilities-boost-malware-protection\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.microsoft.com\/insidetrack\/blog\/"},{"@type":"ListItem","position":2,"name":"Microsoft Defender ATP&#8217;s antivirus capabilities boost malware protection"}]},{"@type":"WebSite","@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/#website","url":"https:\/\/www.microsoft.com\/insidetrack\/blog\/","name":"Inside Track Blog","description":"How Microsoft does IT","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.microsoft.com\/insidetrack\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/#\/schema\/person\/59e5f7b07dae629412c990cc1a63b575","name":"Inside Track \u2013 retired stories","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/#\/schema\/person\/image\/ee0de87c339052d5d84852473bd7f213","url":"https:\/\/secure.gravatar.com\/avatar\/24a8c329ab32afd1bc23fd1658d1acc2?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/24a8c329ab32afd1bc23fd1658d1acc2?s=96&d=mm&r=g","caption":"Inside Track \u2013 retired stories"},"description":"The content on this page was crafted to highlight a specific moment in time or the solutions that have led us to where we are today. It offers valuable insights into our journey and the progress made over the years. Check out the Inside Track blog page for our up-to-date stories around Microsoft.","url":"https:\/\/www.microsoft.com\/insidetrack\/blog\/author\/insidetrackarchive\/"}]}},"jetpack_featured_media_url":"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2024\/01\/5628-wordpress-hero.jpg","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p9hcZA-3pb","_links":{"self":[{"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/posts\/13093"}],"collection":[{"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/users\/146"}],"replies":[{"embeddable":true,"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/comments?post=13093"}],"version-history":[{"count":8,"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/posts\/13093\/revisions"}],"predecessor-version":[{"id":13110,"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/posts\/13093\/revisions\/13110"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/media\/13095"}],"wp:attachment":[{"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/media?parent=13093"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/categories?post=13093"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/tags?post=13093"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/coauthors?post=13093"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}