We must stress that Microsoft Defender ATP is not an antivirus (AV) product. It investigates the scope and potential impact of each threat, providing reports of the various threats to your organisation’s machines, allowing you to quickly and easily mitigate and remove the threats using advanced tools and automation.
In a nutshell, Microsoft Defender ATP automatically detects and remediates advanced attacks on your endpoints.
However, this article solely focuses on the product from a Microsoft and Windows 10 perspective.īecause a lot of people outside of the Microsoft community still refer to the solution as Microsoft Defender ATP (which stands for Advanced Threat Protection), we will keep this terminology in the article for now. Microsoft rebranded the product to reflect the fact that it is now also available to protect endpoints using operating systems (OSs) other than Windows such as: macOS, Linux, iOS and Android. Microsoft offer an incredibly powerful post-breach solution that provides automated endpoint detection and response: 'Microsoft Defender for Endpoint', formerly known as 'Microsoft Defender ATP' (MDATP) or 'Windows Defender ATP' (WDATP).