Microsoft Defender ATP preview arrives for Linux distros -- iOS and Android versions to follow:
Microsoft has released a public preview of its Microsoft Defender Advanced Threat Protection (ATP) for various Linux distributions.
The company says that the tool will also be coming to iOS and Android later this year, and more details of these mobile editions are due to be revealed at next week's RSA Conference. The spread to additional platform comes after Microsoft rebranded Windows Defender as Microsoft Defender last year.
[...]On the Linux server front, RHEL 7+, CentOS Linux 7+, Ubuntu 16 LTS, or higher LTS, SLES 12+, Debian 9+ and Oracle EL 7 are supported by the preview, reported Bleeping Computer.
In a blog post about the release, Microsoft writes: "We're announcing another step in our journey to offer security from Microsoft with the public preview of Microsoft Defender ATP for Linux. Extending endpoint threat protection to Linux has been a long-time ask from our customers and we're excited to be able to deliver on that".
(Score: 2) by Farkus888 on Saturday February 22 2020, @12:12PM (2 children)
Obvious concerns aside... As an admin of a mixed environment this has potential. At work we don't all get to pick every OS or make every design choice. The ability to DMZ and check files on a Linux machine before they get to a place they could be harmful would be nice.
(Score: 1, Insightful) by Anonymous Coward on Saturday February 22 2020, @04:05PM (1 child)
I use ClamAV for that. I’d say it works well, but I don’t know. Because I’ve not had a virus hit my systems in about 15 years. So maybe it works really well.
(Score: 0) by Anonymous Coward on Saturday February 22 2020, @10:08PM
You've not had a virus hit your systems that you know of. It isn't uncommon for groups to get a foothold in the system and be there for months before people notice it.
For what it is worth, if you aren't using one of the various signature services for ClamAV, the detection out of the box is somewhat lacking.