Microsoft has announced some enhancements to Microsoft Defender for Endpoint (formerly Defender ATP) that should help remote workers with Android and iPhone more securely access information on the corporate network.
Microsoft has updated the look of the Microsoft Defender for Endpoint apps for Android and iOS. It also enables mobile app management for devices that are not enrolled in Microsoft’s Intune mobile device management (MDM) platform and jailbreak detection for iOS.
Previously, Microsoft Defender for Endpoint only worked on devices enrolled using Intune mobile device management (MDM).
Microsoft Defender for Endpoint is a cloud-based service separate from Microsoft Defender Antivirus. In April, Microsoft released a preview of Microsoft Defender for Endpoint that supported unmanaged devices running Windows, Linux, macOS, iOS, and Android as well as network devices.
Part of its functionality is aimed at helping security teams investigate and secure unmanaged PCs, mobile devices, servers, and network devices on a network.
This update is about expanding mobile app support for organizations that use Intune but may have devices that aren’t MDM enrolled, including popular third-party MDM solutions.
“With this update, Microsoft Defender for Endpoint can protect an organization’s data within a managed app for those who don’t use MDM but use Intune to manage mobile apps,” Microsoft said in a statement. blog post.
“It also extends support to customers who use other enterprise mobility management solutions such as AirWatch, MobileIron, MaaS360 and others, while using Intune for mobile application management.
The other cool feature is that the product can now detect jailbreaks on iOS devices.
“Jailbreaking an iOS device elevates the root access that is granted to the user of the device,” Microsoft explains. “Once this happens, users can easily download potentially malicious apps, and the iPhone won’t get critical, automatic iOS updates that can fix security holes.”
The jailbreak detection feature for Microsoft Defender for Endpoint is now available to everyone. It detects both unmanaged and managed devices that have been jailbroken and sends an alert when this happens to Microsoft 365 Defender.
“These types of devices introduce additional risk and a higher probability of breach for your organization,” Microsoft explains.
Enrolling iOS devices should be easier now, as users no longer need to provide VPN permissions to get phishing protection. Administrators can now simply pass the VPN profile to enrolled devices.
Finally, Microsoft Tunnel VPN in the Microsoft Defender for Endpoint app for Android has reached general availability.