As enterprise networks welcome more and more wirelessly connected mobile devices, these smartphones and other portable devices can pose a significant cyber-attack/security threat to the hybrid workplace. Recently, however, Microsoft has added a new “Mobile Network Protection” feature to Defender for Endpoint that extends platform threat detection to Android / iOS mobile operating systems.
Potential threats can infiltrate an already vulnerable corporate network via Wi-Fi, and mobile network protection can attempt to protect the enterprise from malicious attacks from infected devices.
Microsoft notes that as networks become more complex, they can be easily targeted by criminals if left unattended.
To address this concern, Defender for Endpoint offers features to help organizations identify, assess and patch shortcomings across endpoints with the support of robust threat intelligence.
The company is pleased to announce that users can now benefit from this with Microsoft Defender for Endpoint on Android and iOS platforms.
It is important to note that the Microsoft Endpoint Manager Management Center has instructions for setting up network protection for Android / iOS mobile devices and that most protections are enabled by default on the platform.
Protection against malicious Wi-Fi-related threats and malicious hardware (such as pineapple devices)
● Notifications can be sent when Wi-Fi-related threats are detected
● Provides a guided experience within the app to connect to a secure network
● Remediation options to change networks if they are insecure or suspicious
● Medium priority alerts when a suspicious/open network is detected
Note that MDE requires Onboarding Permission to enable storage and notifications on iOS devices, and Android smartphone users will need to grant Location Permission to allow MDE to monitor their networks and send relevant threat notifications.
In addition, Microsoft warns that MDE can only provide limited protection against cyber threats. If users refuse to grant location access, the platform can only protect them from forged certificates.
Finally, the company is gradually expanding the scope of the platform. Last month, for example, Microsoft confirmed that Microsoft 365 subscribers have access to Microsoft Defender, which now also allows for the quarantine of unmanaged but threatened Windows devices.
