Microsoft is testing a new Defender for Endpoint capability that will block traffic to and from undiscovered endpoints to thwart attackers’ lateral network movement attempts.
Microsoft is testing a new Defender for Endpoint capability that will block traffic to and from undiscovered endpoints to thwart attackers’ lateral network movement attempts.
Would someone smarter than me explain the article a bit? I’m getting lost on what things like a ‘contained IP address’ is.
If I understand correctly:
Deciphering the market speak: a computer with defender installed on a corporate network will ignore other computers on the same network unless they also have defender installed. Ignored computers are ‘contained’ by IP address
Thank you. <3