Microsoft Defender upgrade could solve one of the biggest BYOD security threats TechRadar Skip to main content TechRadar is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Here's why you can trust us. Microsoft Defender upgrade could solve one of the biggest BYOD security threats By Sead Fadilpašić published 10 June 2022 Compromised devices can be isolated from the network (Image credit: Shutterstock) Audio player loading… Microsoft has just introduced a new security feature that's bound to make life a lot easier for IT pros handling a remote workforce. The Redmond software giant has now enabled Microsoft Defender for Endpoint (MDE) to "contain" unmanaged, and compromised Windows devices on the network. In other words, if a Windows device on the network gets deemed unsafe, or compromised, for whatever reason, other devices on the network will avoid it like the plague - no communication comes in, or goes out of the device. That way, in case a threat actor managed to weasel their way into a network (opens in new tab), they'll be stopped in their tracks, before they can do any serious damage. Mapping out the target network, identifying key endpoints (opens in new tab), and exfiltrating sensitive data from all the devices, is key, for example, in ransomware attacks. (opens in new tab) Share your thoughts on Cybersecurity and get a free copy of the Hacker's Manual 2022 (opens in new tab). Help us find how businesses are preparing for the post-Covid world and the implications of these activities on their cybersecurity plans. Enter your email at the end of this survey (opens in new tab) to get the bookazine, worth $10.99/£10.99. Targeting unmanaged endpoints IT security pros, on the other hand, will have an isolated, compromised device, to play around with. "This action can help prevent neighboring devices from becoming compromised while the security operations analyst locates, identifies, and remediates the threat on the compromised device," Microsoft said. There's a caveat, though. This only works on onboarded Windows 10 (and later) devices, or Windows Server 2019 (and later). Read more> This nasty Windows 10 zero-day vulnerability finally has an unofficial fix (opens in new tab) > Microsoft takes action to eliminate potential Windows 11 vulnerability (opens in new tab) > Microsoft has uncovered loads of Windows 11 security threats – here's what you need to do (opens in new tab) "Only devices running on Windows 10 and above will perform the Contain action meaning that only devices running Windows 10 and above that are enrolled in Microsoft Defender for Endpoint will block 'contained' devices at this time," Microsoft says. In other words, a compromised unmanaged device (opens in new tab) can still affect other unmanaged devices. The new feature can be found on the "Device inventory" page in the Microsoft 365 Defender portal. There, the admin can choose which devices to contain, by selecting the "Contain device" option from the actions menu. It may take up to five minutes for the changes to take effect, it was said. Should a contained device change its IP address, other managed devices will be able to recognize the change and block all communications coming from the new IP address, as well.Keep your workforce safe with the best antivirus solutions around (opens in new tab) Via: BleepingComputer (opens in new tab) Sead Fadilpašić Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he's written for numerous media outlets, including Al Jazeera Balkans. He's also held several modules on content writing for Represent Communications. See more Computing news Are you a pro? Subscribe to our newsletter Sign up to theTechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed! Thank you for signing up to TechRadar. You will receive a verification email shortly. There was a problem. Please refresh the page and try again. MOST POPULARMOST SHARED1You may not have to sell a body part to afford the Nvidia RTX 4090 after all2It looks like Fallout's spiritual successor is getting a PS5 remaster3My days as a helpful meat shield are over, thanks to the Killer Klown horror game4Google Pixel 7 and Pixel 7 Pro: the 7 most exciting new camera features5Micro-LED 4K TVs aren't trying to kill OLED, they're aiming at projectors1We finally know what 'Wi-Fi' stands for - and it's not what you think2Dreamforce 2022 live: All the announcements from this year's show3'Go small or go home': HTC teases a new Vive VR headset4She-Hulk episode 8 just confirmed Netflix's Daredevil TV show is canon in the MCU5Google's new AI lets you turn words into HD videos Technology Magazines (opens in new tab)● (opens in new tab)The best tech tutorials and in-depth reviewsFrom$12.99 (opens in new tab)View (opens in new tab)