Windows Defender ATP to add AI-based automated threat responses

Laurent Giret

By launching Windows Defender Advanced Threat Protection last year, Microsoft gave enterprise customers a new tool that can detect, investigate, and respond to advanced attacks on their networks. The upcoming Fall Creators Update will further improve Windows Defender ATP with new prevention capabilities, but Microsoft’s recent acquisition of security automation company Hexadite will add another much important brick to the wall.

“We are happy to announce we have successfully integrated Hexadite’s innovative security automation technology into Windows Defender ATP,” Microsoft announced today. “This enables Windows Defender ATP customers to leverage state of the art AI technology to solve their alert volume challenges by letting Windows Defender ATP automatically investigate alerts, apply artificial intelligence to determine whether a threat is real and to determine what action to take, going from alert to remediation in minutes at scale.”

You can see how Hexadite’s security automation technology will improve Windows Defender ATP in the video below:

The Redmond giant says that the new automated response capabilities in Windows Defender ATP will be available in preview later this year. “With this addition, Windows Defender ATP now covers the end-to-end threat lifecycle from detection to investigation and response automatically,” Microsoft added.