Enhanced XDR Stories for Microsoft Defender Endpoint Alerts (Video)

Enhanced XDR Stories for Microsoft Defender Endpoint Alerts:

We added data to Microsoft Endpoint Alert stories that can help you identify key Indicators of Compromise in stories related to outbound network traffic, such as for phishing attacks.
These are the new data fields:

  • Target: The URL involved in the story
  • Destination IP: The remote IP address involved in the story
  • Available for XDR Core, XDR Pro and MDR customers

For more information, see Reviewing XDR Stories for Microsoft Defender for Endpoint Alerts

Was this article helpful?

0 out of 0 found this helpful

0 comments

Add your comment