Security Experts:

Connect with us

Hi, what are you looking for?


Endpoint Security

Microsoft Releases Defender ATP for Android in Public Preview

Microsoft this week announced the public preview availability of the Android version of its Defender Advanced Threat Protection (ATP) software and the general availability of the Linux variant.

Microsoft this week announced the public preview availability of the Android version of its Defender Advanced Threat Protection (ATP) software and the general availability of the Linux variant.

Microsoft introduced Defender ATP in Windows 10 in 2016, but has since expanded its reach to other Windows versions, as well as to macOS and Linux, and now mobile devices. Last week, the company announced the integration of a UEFI scanner into its security solution.

The company previewed Microsoft Defender ATP for Android at the RSA Conference 2020 in San Francisco, and says it received great response from customers and the industry.

The software was released with protections against phishing and unsafe network connections from apps, websites, and malicious apps, as well as with the option to restrict access to corporate data from devices considered risky.

Microsoft Defender ATP for Android leverages Microsoft Defender SmartScreen services to block unsafe sites accessed through SMS, WhatsApp, email, browsers, and other apps, and proactively scans for malicious apps, files, and potentially unwanted applications (PUA).

Courtesy of integration with Microsoft Endpoint Manager and Conditional Access, mobile devices that have been compromised with malicious apps are blocked from accessing enterprise resources.

Furthermore, all events and alerts are available in the Microsoft Defender Security Center, for a centralized view of threats on all devices (Windows, Mac, Linux, and Android). Here, security teams can create custom indicators for increased control over allowing and blocking domains on Android devices.

Now generally available, Microsoft Defender ATP for Linux includes support for the six most common Linux Server distributions, namely RHEL 7.2+, CentOS Linux 7.2+, Ubuntu 16 LTS or higher LTS, SLES 12+, Debian 9+, and Oracle Linux 7.2.

According to Microsoft, the solution can be deployed and configured using Puppet, Ansible, or existing Linux configuration management tools. A Microsoft Defender ATP for Servers license is needed to use Defender ATP for Linux.

Related: Microsoft Defender ATP Gets UEFI Scanner

Related: Microsoft Defender ATP for Mac Now in Public Preview

Related: Microsoft Threat Protection Now Generally Available

Written By

Ionut Arghire is an international correspondent for SecurityWeek.

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join this webinar to learn best practices that organizations can use to improve both their resilience to new threats and their response times to incidents.


Join this live webinar as we explore the potential security threats that can arise when third parties are granted access to a sensitive data or systems.


Expert Insights

Related Content


The changing nature of what we still generally call ransomware will continue through 2023, driven by three primary conditions.


No one combatting cybercrime knows everything, but everyone in the battle has some intelligence to contribute to the larger knowledge base.


A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the...

Malware & Threats

Threat actors are increasingly abusing Microsoft OneNote documents to deliver malware in both targeted and spray-and-pray campaigns.

Mobile & Wireless

Infonetics Research has shared excerpts from its Mobile Device Security Client Software market size and forecasts report, which tracks enterprise and consumer security client...

CISO Strategy

Varied viewpoints as related security concepts take on similar traits create substantial confusion among security teams trying to evaluate and purchase security technologies.

Malware & Threats

Microsoft plans to improve the protection of Office users by blocking XLL add-ins from the internet.

Malware & Threats

A vulnerability affecting IBM’s Aspera Faspex file transfer solution, tracked as CVE-2022-47986, has been exploited in attacks.