Microsoft Defender for Endpoint

An online service that adds a post-breach layer of protection to Windows 10 clients, helping to detect threats that made it past other defenses and providing organizations with information to investigate and remedy breaches across multiple endpoints. Previously named Microsoft Defender Advanced Threat Protection (ATP), and initially named Windows Defender Advanced Threat Protection.

Microsoft Defender for Endpoint

An online service that adds a post-breach layer of protection to Windows 10 clients, helping to detect threats that made it past other defenses and providing organizations with information to investigate and remedy breaches across multiple endpoints. Previously named Microsoft Defender Advanced Threat Protection (ATP), and initially named Windows Defender Advanced Threat Protection.

Subscribe to Microsoft Defender for Endpoint

Microsoft Defender offers limited security capabilities for mobile devices, and the cost to users may not be worth it to users of iPhones and iPads.

The two Microsoft Defender for Endpoint plans can be complicated to untangle.

Microsoft 365 E3 receives a limited layer of centrally managed endpoint protection, partially filling the security gap that existed below Microsoft Defender for Endpoint.

Microsoft Defender for Servers plans can be complicated to untangle.

Multiple Microsoft antimalware offerings are available for Windows Server, ranging from unmanaged software to Azure subscription-based services, making feature comparisons difficult.

New name for online service and accompanying client-side agent that help security analysts mitigate, detect, investigate, and respond to threats against endpoints; see Microsoft Defender Advanced Threat Protection (prior name) for in-depth entry.

The set of features offered by Microsoft Defender for Endpoint varies depending on the platform it is being used to secure. Windows 10 Enterprise continues to offer the most comprehensive value for the subscription-based service.

Microsoft announced forthcoming changes to Microsoft Defender for Endpoint in Aug. 2021. This report will be updated during Sept. 2021 to reflect those changes as further information becomes available.

An online service and accompanying client-side agent that help security analysts mitigate, detect, investigate, and respond to threats against their Windows and macOS endpoints; use on client devices is licensed via User SLs (Subscription Licenses).

An online service that adds a post-breach layer of protection to Windows client OS devices, helping to detect and remedy threats that made it past other defenses; licensed via User SLs (Subscription Licenses). Renamed; see Microsoft Defender Advanced Threat Protection for in-depth entry.