- cross-posted to:
- cybersecurity@sh.itjust.works
- cross-posted to:
- cybersecurity@sh.itjust.works
Microsoft is testing a new Defender for Endpoint capability that will block traffic to and from undiscovered endpoints to thwart attackers’ lateral network movement attempts.
You must log in or register to comment.
Would someone smarter than me explain the article a bit? I’m getting lost on what things like a ‘contained IP address’ is.
If I understand correctly:
Deciphering the market speak: a computer with defender installed on a corporate network will ignore other computers on the same network unless they also have defender installed. Ignored computers are ‘contained’ by IP address
Thank you. <3
