itguysocal commented 2 years ago

In the Plan table, Fileless attack detection is listed as not included in Plan 1. However, since Plan 1 includes EDR, then Fileless attack detection is included as part of the EDR technology according to this article here: https://docs.microsoft.com/en-us/microsoft-365/security/intelligence/fileless-threats?view=o365-worldwide#defeating-fileless-malware

Document Details

⚠ Do not edit this section. It is required for docs.microsoft.com ➟ GitHub issue linking.

ID: 8432d9d8-e414-acf4-9287-ebbafab23c7e
Version Independent ID: 9eb184bd-e66d-6b1b-6b86-509ebe70bd3e
Content: Overview of Microsoft Defender for Servers
Content Source: articles/defender-for-cloud/defender-for-servers-introduction.md
Service: defender-for-cloud
GitHub Login: @bmansheim
Microsoft Alias: benmansheim

RohitMungi-MSFT commented 2 years ago

@itguysocal Thanks for posting the question. I have assigned the issue to the content author to review and update if required. Thanks!!

bmansheim commented 2 years ago

@itguysocal We are exactly discussing this internally. It should be resolved in the next few days.

bmansheim commented 2 years ago

@itguysocal Haven't forgotten this.

bmansheim commented 2 years ago

Hi @itguysocal . We just this week published updates to the Defender for Servers overview page, including clarification that Defender for Servers Plan 1 gets fileless attack detection from MDE. I hope that helps.

MicrosoftDocs / azure-docs

Fileless attack detection in Plan Table #97177

Document Details

please-close