You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: defender-endpoint/microsoft-defender-antivirus-updates.md
+26-40Lines changed: 26 additions & 40 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -3,70 +3,45 @@ title: Microsoft Defender Antivirus security intelligence and product updates
3
3
description: Manage how Microsoft Defender Antivirus receives protection and product updates.
4
4
ms.service: defender-endpoint
5
5
ms.localizationpriority: high
6
-
ms.date: 07/23/2025
6
+
ms.date: 09/18/2025
7
7
audience: ITPro
8
8
ms.topic: reference
9
-
author: batamig
10
-
ms.author: bagol
11
-
ms.custom: nextgen
12
-
ms.reviewer: pahuijbr, tudobril, yongrhee
13
-
manager: bagol
9
+
author: KesemSharabi
10
+
ms.author: kesharab
14
11
ms.subservice: ngp
15
-
ms.collection:
16
-
- m365-security
17
-
- tier2
18
-
- mde-ngp
19
12
search.appverid: met150
13
+
appliesto:
14
+
- Microsoft Defender for Endpoint Plan 1
15
+
- Microsoft Defender for Endpoint Plan 2
20
16
---
21
17
22
18
# Microsoft Defender Antivirus security intelligence and product updates
23
19
24
-
**Applies to:**
20
+
Keeping Microsoft Defender Antivirus up to date is critical to assure your devices are protected against new malware and attack techniques. Update your antivirus protection, even if Microsoft Defender Antivirus is running in [passive mode](microsoft-defender-antivirus-compatibility.md). You can find the lates engine, platform, and signature date in [Security intelligence updates for Microsoft Defender Antivirus and other Microsoft anti-malware](https://www.microsoft.com/en-us/wdsi/defenderupdates)
25
21
26
-
-[Microsoft Defender for Endpoint Plans 1 and 2](microsoft-defender-endpoint.md)
27
-
- Microsoft Defender Antivirus
28
-
29
-
**Platforms**
30
-
31
-
- Windows
32
-
33
-
Keeping Microsoft Defender Antivirus up to date is critical to assure your devices have the latest technology and features needed to protect against new malware and attack techniques. Update your antivirus protection, even if Microsoft Defender Antivirus is running in [passive mode](microsoft-defender-antivirus-compatibility.md). This article includes information about the two types of updates for keeping Microsoft Defender Antivirus current:
22
+
This article is aimed at **Windows** devices, and includes information about the following two types of updates:
-[How to roll back an update](#how-to-roll-back-an-update) (if necessary)
42
-
-[Platform version included with Windows 10 releases](#platform-version-included-with-windows-10-releases)
43
-
-[Updates for Deployment Image Servicing and Management (DISM)](#updates-for-deployment-image-servicing-and-management-dism)
44
-
45
-
To see the most current engine, platform, and signature date, see [Security intelligence updates for Microsoft Defender Antivirus and other Microsoft anti-malware](https://www.microsoft.com/en-us/wdsi/defenderupdates).
Microsoft Defender Antivirus uses [cloud-delivered protection](cloud-protection-microsoft-defender-antivirus.md) (also called the*Microsoft Advanced Protection Service*, or MAPS) and periodically downloads dynamic security intelligence updates to provide more protection. These dynamic updates don't take the place of regular security intelligence updates via security intelligence update KB2267602.
30
+
Microsoft Defender Antivirus uses [cloud-delivered protection](cloud-protection-microsoft-defender-antivirus.md), also known as*Microsoft Advanced Protection Service*, or *MAPS*. Defender Antivirus periodically downloads dynamic security [intelligence updates](https://www.microsoft.com/en-us/wdsi/defenderupdates). These updates don't replace regular security intelligence updates. Engine updates are included with security intelligence updates and are released monthly.
52
31
53
-
> [!NOTE]
54
-
> Updates are released under the following KBs:
55
-
>
56
-
> - Microsoft Defender Antivirus: KB2267602
57
-
> - System Center Endpoint Protection: KB2461484
32
+
Updates are released under the following KBs:
58
33
59
-
Cloud-delivered protection is always on and requires an active connection to the Internet to function. Security intelligence updates occur on a scheduled cadence (configurable via policy). For more information, see [Use Microsoft cloud-provided protection in Microsoft Defender Antivirus](cloud-protection-microsoft-defender-antivirus.md).
34
+
-Microsoft Defender Antivirus: KB2267602
60
35
61
-
For a list of recent security intelligence updates, see [Security intelligence updates for Microsoft Defender Antivirus and other Microsoft anti-malware](https://www.microsoft.com/en-us/wdsi/defenderupdates).
36
+
- System Center Endpoint Protection: KB2461484
62
37
63
-
Engine updates are included with security intelligence updates and are released on a monthly cadence.
38
+
[Cloud-delivered protection](cloud-protection-microsoft-defender-antivirus.md) is always on and requires an active connection to the internet to function. Security intelligence updates occur on a scheduled cadence which you can configure using a policy.
64
39
65
40
## Product updates
66
41
67
42
Microsoft Defender Antivirus requires monthly updates (KB4052623) known as *platform updates*.
68
43
69
-
You can manage the distribution of updates through one of the following methods:
44
+
You can manage the distribution of updates using one of the following methods:
70
45
71
46
-[Windows Server Update Service (WSUS)](/mem/configmgr/protect/deploy-use/endpoint-definitions-wsus#to-synchronize-endpoint-protection-definition-updates-in-standalone-wsus)
![m365-skilling-repo-management[bot]](https://avatars.githubusercontent.com/in/1161012?v=4&size=40){kind=avatar}
0 commit comments