{"id":18859,"date":"2018-11-13T17:00:55","date_gmt":"2018-11-13T17:00:55","guid":{"rendered":"https:\/\/cloudblogs.microsoft.com\/microsoftsecure\/?p=86587"},"modified":"2018-11-13T17:00:55","modified_gmt":"2018-11-13T17:00:55","slug":"the-evolution-of-microsoft-threat-protection-november-update","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/the-evolution-of-microsoft-threat-protection-november-update\/","title":{"rendered":"The evolution of Microsoft Threat Protection, November update"},"content":{"rendered":"<p>At Ignite 2018, we <a href=\"https:\/\/myignite.techcommunity.microsoft.com\/sessions\/64344?source=sessions#ignite-html-anchor\">announced<\/a> Microsoft Threat Protection, a comprehensive, integrated solution securing the modern workplace across identities, endpoints, user data, cloud apps, and, infrastructure (Figure 1).<\/p>\n<p>The foundation of the solution is the <a href=\"https:\/\/www.microsoft.com\/en-us\/security\/intelligence\">Microsoft Intelligent Security Graph<\/a>, which correlates 6.5 <strong><em>trillion signals daily from email alone<\/em><\/strong> and enables:<\/p>\n<ul>\n<li>Powerful machine learning developed by Microsoft\u2019s <a href=\"https:\/\/blogs.microsoft.com\/on-the-issues\/2017\/05\/14\/need-urgent-collective-action-keep-people-safe-online-lessons-last-weeks-cyberattack\/\">3500 in-house security specialists<\/a><\/li>\n<li>Automation capabilities for enhanced hunting, investigation, and remediation\u2014helping reduce burden on IT teams<\/li>\n<li>Seamless integration between disparate services<\/li>\n<\/ul>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-large wp-image-86593\" src=\"https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-1-1024x594.png\" alt=\"\" width=\"1024\" height=\"594\" srcset=\"https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-1-1024x594.png 1024w, https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-1-300x174.png 300w, https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-1-768x446.png 768w, https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-1-330x191.png 330w, https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-1-800x464.png 800w, https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-1-400x232.png 400w, https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-1.png 1429w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\"\/><\/p>\n<p><em>Figure 1: Microsoft Threat Protection provides an integrated solution securing the modern workplace<\/em><\/p>\n<p>Today, we revisit some of the solution capabilities announced at Ignite and provide updates on significant enhancements made since September. Engineers across teams at Microsoft are collaborating to unlock the full, envisioned potential of Microsoft Threat Protection. Throughout this journey, we want to keep you updated on its development.<\/p>\n<h3>Services in Microsoft Threat Protection<\/h3>\n<p>Microsoft Threat Protection leverages the unique capabilities of different services to secure several attack vectors. Table 1 summarizes the services in the solution. As each individual service is enhanced, so too is the overall solution.<\/p>\n<p><em>Table 1: Services in Microsoft Threat Protection securing the modern workplace attack vectors<\/em><\/p>\n<h3>Strengthening identity security<\/h3>\n<p>By fully integrating <a href=\"https:\/\/techcommunity.microsoft.com\/t5\/Enterprise-Mobility-Security\/Secure-your-hybrid-cloud-environments-with-Azure-AD-Identity\/ba-p\/262400\">Azure Active Directory Identity Protection (Azure AD Identity Protection)<\/a> with Azure Advanced Threat Protection (Azure ATP) (Figure 2),\u00a0<span>Microsoft Threat Protection is<\/span> <span>able to strengthen identity security.<\/span>\u00a0Azure AD Identity Protection uses dynamic intelligence and machine learning to automatically protect and detect against identity attacks. Azure ATP is a cloud-powered service leveraging machine learning to help detect suspicious behavior across hybrid environments from various types of advanced external and insider cyberthreats. The integration of the two enables IT teams to manage identities <em>and<\/em> perform security operations functions through a unified experience that was previously impossible. The integration allows SecOps investigations of risky users between the two products through a single pane of glass. We will start offering customers this integrated experience over the next few weeks.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-large wp-image-86614\" src=\"https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-2-v2-1024x564.png\" alt=\"\" width=\"1024\" height=\"564\" srcset=\"https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-2-v2-1024x564.png 1024w, https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-2-v2-300x165.png 300w, https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-2-v2-768x423.png 768w, https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-2-v2-330x182.png 330w, https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-2-v2-800x441.png 800w, https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-2-v2-400x220.png 400w, https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-2-v2.png 1437w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\"\/><\/p>\n<p><em>Figure 2: Integrating Azure ATP with the Azure AD Identity Protection console<\/em><\/p>\n<h3>Enhanced security for the endpoint<\/h3>\n<p>Figure 3 illustrates how Microsoft Threat Protection addresses specific customer challenges.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-large wp-image-86599\" src=\"https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-3-1024x576.png\" alt=\"\" width=\"1024\" height=\"576\" srcset=\"https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-3-1024x576.png 1024w, https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-3-300x169.png 300w, https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-3-768x432.png 768w, https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-3-330x186.png 330w, https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-3-800x450.png 800w, https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-3-400x225.png 400w, https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-3.png 1429w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\"\/><\/p>\n<p><em>Figure 3: Microsoft Threat Protection is built to address specific customer challenges<\/em><\/p>\n<p>Automation is a powerful capability, promising greater control and shorter threat resolution times even as the digital estate expands. We <a href=\"https:\/\/techcommunity.microsoft.com\/t5\/What-s-New\/Automating-investigation-and-response-for-memory-based-attacks\/m-p\/276354#M146\">recently demonstrated<\/a> our focus on automation by adding automated investigation and remediation capabilities for memory-based\/file-less attacks in our industry leading endpoint security service, <a href=\"https:\/\/www.microsoft.com\/en-us\/WindowsForBusiness\/windows-atp\">Windows Defender Advanced Threat Protection (Windows Defender ATP)<\/a>. Now the service can leverage automated memory forensics to incriminate malicious memory regions and perform required in-memory remediation actions. The unique new capability enables fully automated investigations and resolution flow for\u00a0memory-based attacks, going beyond simply alerting and saving security teams precious time of manual memory forensic effort.<\/p>\n<p>Figure 4 shows the investigation graph of an ongoing investigation in the Windows Defender Security Center. To enable the new feature, <a href=\"https:\/\/securitycenter.windows.com\/preferences2\/integration\">run the October 2018 update of Windows 10 and enable the preview features<\/a>. The capability was released earlier this year and can now mark your alerts as resolved automatically once automation successfully remediates the threat.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-large wp-image-86617\" src=\"https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-4v2-1024x462.png\" alt=\"\" width=\"1024\" height=\"462\" srcset=\"https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-4v2-1024x462.png 1024w, https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-4v2-300x135.png 300w, https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-4v2-768x347.png 768w, https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-4v2-330x149.png 330w, https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-4v2-800x361.png 800w, https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-4v2-400x181.png 400w, https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-4v2.png 1433w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\"\/><\/p>\n<p><em>Figure 4: Investigation graph of ongoing investigation in Windows Defender Security Center<\/em><\/p>\n<h3>Elevating user data and cloud app security<\/h3>\n<p>Microsoft Threat Protection secures user data by leveraging Office 365 threat protection services, including <a href=\"https:\/\/products.office.com\/en-us\/exchange\/online-email-threat-protection\">Office 365 Advanced Threat Protection (Office 365 ATP)<\/a>, which provides best-in-class security in Office 365 against advanced threats to email, collaboration apps, and Office clients. We <a href=\"https:\/\/techcommunity.microsoft.com\/t5\/Security-Privacy-and-Compliance\/Enhanced-User-Experience-for-Office-365-Advanced-Threat\/ba-p\/201121\">recently launched Native-Link Rendering<\/a>, (Figure 5)\u2014for both the Outlook Client and the Outlook on the Web application\u2014enabling users to view the destination URL for links in email. This allows users to make an informed decision before clicking through. This feature was a high demand request from customers who educate users on spotting suspicious links in email and we\u2019re excited to deliver on it. Office 365 ATP is the only email security service for Office 365 offering this powerful feature.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-large wp-image-86605\" src=\"https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-5-1024x614.png\" alt=\"\" width=\"1024\" height=\"614\" srcset=\"https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-5-1024x614.png 1024w, https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-5-300x180.png 300w, https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-5-768x460.png 768w, https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-5-330x198.png 330w, https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-5-800x479.png 800w, https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-5-400x240.png 400w, https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-5.png 1430w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\"\/><\/p>\n<p><em>Figure 5: Native Link Rendering user experience in Office 365 ATP user<\/em><\/p>\n<p>Enhancements have also been made in securing cloud apps, beginning with the <a href=\"https:\/\/techcommunity.microsoft.com\/t5\/Enterprise-Mobility-Security\/Microsoft-Cloud-App-Security-and-Windows-Defender-ATP-better\/ba-p\/263265\">integration between Microsoft Cloud App Security and Windows Defender ATP<\/a>. Now, <a href=\"https:\/\/www.microsoft.com\/en-us\/cloud-platform\/cloud-app-security\">Microsoft Cloud App Security<\/a> leverages signal from Windows Defender ATP monitored endpoints, enabling discovery and recovery from unsupported cloud service (shadow IT) usage. <a href=\"https:\/\/techcommunity.microsoft.com\/t5\/Enterprise-Mobility-Security\/Managing-risky-3rd-party-app-permissions-with-Microsoft-s-CASB\/ba-p\/276401\">More<\/a> <a href=\"https:\/\/techcommunity.microsoft.com\/t5\/Enterprise-Mobility-Security\/Managing-risky-3rd-party-app-permissions-with-Microsoft-s-CASB\/ba-p\/276401\">recently<\/a>, <a href=\"https:\/\/techcommunity.microsoft.com\/t5\/Enterprise-Mobility-Security\/Managing-risky-3rd-party-app-permissions-with-Microsoft-s-CASB\/ba-p\/276401\">Microsoft Cloud App Security<\/a> further helps reduce impact from shadow IT by providing granular visibility into <a href=\"https:\/\/techcommunity.microsoft.com\/t5\/Enterprise-Mobility-Security\/Managing-risky-3rd-party-app-permissions-with-Microsoft-s-CASB\/ba-p\/276401\">Open Authentication (OAuth) application permissions<\/a> that have access to Office 365, G Suite, and Salesforce data. OAuth apps are a newer attack vector often leveraged in phishing attacks, where attackers trick users into granting access to rogue applications. In the managing apps view (Figure 6), admins see a full list of both permissions granted to an OAuth app and the users granting the apps access. The permission level details help admins decide which apps users can continue to have access and which ones will have access revoked.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-large wp-image-86620\" src=\"https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-6-v2-1024x682.png\" alt=\"\" width=\"1024\" height=\"682\" srcset=\"https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-6-v2-1024x682.png 1024w, https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-6-v2-300x200.png 300w, https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-6-v2-768x512.png 768w, https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-6-v2-330x220.png 330w, https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-6-v2-800x533.png 800w, https:\/\/cloudblogs.microsoft.com\/uploads\/prod\/sites\/13\/2018\/11\/The-evolution-of-Microsoft-Threat-Protection-6-v2-400x266.png 400w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\"\/><\/p>\n<p><em>Figure 6: Microsoft Cloud App Security apps permission management view<\/em><\/p>\n<h3>Experience the evolution of Microsoft Threat Protection<\/h3>\n<p>Take a moment to <a href=\"https:\/\/techcommunity.microsoft.com\/t5\/Security-Privacy-and-Compliance\/Announcing-Microsoft-Threat-Protection\/ba-p\/262783\">learn more about Microsoft Threat Protection<\/a>. <a href=\"https:\/\/customers.microsoft.com\/en-us\/story\/telit-professional-services-microsoft-365\">Organizations<\/a> have already transitioned to Microsoft Threat Protection and <a href=\"https:\/\/techcommunity.microsoft.com\/t5\/What-s-New\/SecOps-is-more-effective-thanks-to-Microsoft-Windows-Defender\/m-p\/272925#M145\">partners<\/a> are leveraging its powerful capabilities. Start your trials of the Microsoft Threat Protection services today to experience the benefits of the most comprehensive, integrated, and secure threat protection solution for the modern workplace.<\/p>\n<p> READ MORE <a href=\"https:\/\/cloudblogs.microsoft.com\/microsoftsecure\/2018\/11\/13\/the-evolution-of-microsoft-threat-protection-november-update\/\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Learn about the latest enhancements to Microsoft Threat Protection, the premier solution for securing the modern workplace across identities, endpoints, user data, apps, and infrastructure.<br \/>\nThe post The evolution of Microsoft Threat Protection, November update appeared first on Microsoft Secure. READ MORE HERE&#8230;<\/p>\n","protected":false},"author":2,"featured_media":18860,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[276],"tags":[254],"class_list":["post-18859","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-microsoft-secure","tag-uncategorized"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.8 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>The evolution of Microsoft Threat Protection, November update 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/the-evolution-of-microsoft-threat-protection-november-update\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"The evolution of Microsoft Threat Protection, November update 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/the-evolution-of-microsoft-threat-protection-november-update\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2018-11-13T17:00:55+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2018\/11\/the-evolution-of-microsoft-threat-protection-november-update.png\" \/>\n\t<meta property=\"og:image:width\" content=\"1024\" \/>\n\t<meta property=\"og:image:height\" content=\"594\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/the-evolution-of-microsoft-threat-protection-november-update\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/the-evolution-of-microsoft-threat-protection-november-update\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"The evolution of Microsoft Threat Protection, November update\",\"datePublished\":\"2018-11-13T17:00:55+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/the-evolution-of-microsoft-threat-protection-november-update\\\/\"},\"wordCount\":880,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/the-evolution-of-microsoft-threat-protection-november-update\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2018\\\/11\\\/the-evolution-of-microsoft-threat-protection-november-update.png\",\"articleSection\":[\"Microsoft Secure\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/the-evolution-of-microsoft-threat-protection-november-update\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/the-evolution-of-microsoft-threat-protection-november-update\\\/\",\"name\":\"The evolution of Microsoft Threat Protection, November update 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/the-evolution-of-microsoft-threat-protection-november-update\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/the-evolution-of-microsoft-threat-protection-november-update\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2018\\\/11\\\/the-evolution-of-microsoft-threat-protection-november-update.png\",\"datePublished\":\"2018-11-13T17:00:55+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/the-evolution-of-microsoft-threat-protection-november-update\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/the-evolution-of-microsoft-threat-protection-november-update\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/the-evolution-of-microsoft-threat-protection-november-update\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2018\\\/11\\\/the-evolution-of-microsoft-threat-protection-november-update.png\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2018\\\/11\\\/the-evolution-of-microsoft-threat-protection-november-update.png\",\"width\":1024,\"height\":594},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/the-evolution-of-microsoft-threat-protection-november-update\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Uncategorized\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/tag\\\/uncategorized\\\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"The evolution of Microsoft Threat Protection, November update\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"The evolution of Microsoft Threat Protection, November update 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/the-evolution-of-microsoft-threat-protection-november-update\/","og_locale":"en_US","og_type":"article","og_title":"The evolution of Microsoft Threat Protection, November update 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/the-evolution-of-microsoft-threat-protection-november-update\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2018-11-13T17:00:55+00:00","og_image":[{"width":1024,"height":594,"url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2018\/11\/the-evolution-of-microsoft-threat-protection-november-update.png","type":"image\/png"}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/the-evolution-of-microsoft-threat-protection-november-update\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/the-evolution-of-microsoft-threat-protection-november-update\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"The evolution of Microsoft Threat Protection, November update","datePublished":"2018-11-13T17:00:55+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/the-evolution-of-microsoft-threat-protection-november-update\/"},"wordCount":880,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/the-evolution-of-microsoft-threat-protection-november-update\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2018\/11\/the-evolution-of-microsoft-threat-protection-november-update.png","articleSection":["Microsoft Secure"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/the-evolution-of-microsoft-threat-protection-november-update\/","url":"https:\/\/www.threatshub.org\/blog\/the-evolution-of-microsoft-threat-protection-november-update\/","name":"The evolution of Microsoft Threat Protection, November update 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/the-evolution-of-microsoft-threat-protection-november-update\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/the-evolution-of-microsoft-threat-protection-november-update\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2018\/11\/the-evolution-of-microsoft-threat-protection-november-update.png","datePublished":"2018-11-13T17:00:55+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/the-evolution-of-microsoft-threat-protection-november-update\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/the-evolution-of-microsoft-threat-protection-november-update\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/the-evolution-of-microsoft-threat-protection-november-update\/#primaryimage","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2018\/11\/the-evolution-of-microsoft-threat-protection-november-update.png","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2018\/11\/the-evolution-of-microsoft-threat-protection-november-update.png","width":1024,"height":594},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/the-evolution-of-microsoft-threat-protection-november-update\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"Uncategorized","item":"https:\/\/www.threatshub.org\/blog\/tag\/uncategorized\/"},{"@type":"ListItem","position":3,"name":"The evolution of Microsoft Threat Protection, November update"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/18859","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=18859"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/18859\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media\/18860"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=18859"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=18859"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=18859"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}