Merge pull request #624 from MicrosoftDocs/main

publish main to live, 6/5/24 10:30 AM

Author: American-Dipper

defender-endpoint/linux-whatsnew.md

@@ -6,13 +6,14 @@ ms.author: dansimp
 author: dansimp
 ms.reviewer: kumasumit, gopkr
 ms.localizationpriority: medium
-ms.date: 05/24/2024
+ms.date: 06/05/2024
 manager: dansimp
 audience: ITPro
 ms.collection:
 - m365-security
 - tier3
 - mde-linux
+ms.custom: partner-contribution
 ms.topic: reference
 ms.subservice: linux
 search.appverid: met150
@@ -1407,4 +1408,4 @@ As an alternative approach, follow the instructions to [uninstall](linux-resourc
 
    </details>
 
-</details><!--This </details> closes "2021 releases"-->
+</details><!--This </details> closes "2021 releases"-->

defender-endpoint/microsoft-defender-antivirus-updates.md

@@ -99,6 +99,21 @@ All our updates contain
 - Serviceability improvements
 - Integration improvements (Cloud, [Microsoft Defender XDR](/defender-xdr/microsoft-365-defender))
 
+### May-2024 (Engine: 1.1.24050.5 | Platform: 4.18.24050.7)
+
+- Security intelligence update version: **1.413.1.0**
+- Release date: **May 30, 2024** (Engine) / **June 4, 2024** (Platform)
+- Engine: **1.1.24050.5**
+- Platform: **4.18.24050.7**
+- Support phase: **Security and Critical Updates**
+
+#### What's new
+
+- Improved performance when running configuration queries.
+- Optimized how scans are prioritized.
+- Fixed a crash caused by a race condition with a device control driver.
+- Added Event Viewer Logging for scan start event where the scan originates from Powershell.
+
 ### April-2024 (Engine: 1.1.24040.1 | Platform: 4.18.24040.4)
 
 - Security intelligence update version: **1.411.7.0**

defender-xdr/pilot-deploy-defender-cloud-apps.md

@@ -1,6 +1,6 @@
 ---
-title: Pilot and deploy Microsoft Defender for Cloud Apps
-description: Microsoft Defender for Cloud Apps technical diagrams explain the architecture in Microsoft Defender XDR, which will help you build a pilot environment.
+title: How do I pilot and deploy Microsoft Defender for Cloud Apps?
+description: How to pilot and deploy Microsoft Defender for Cloud Apps in your production Microsoft 365 tenant.
 search.appverid: met150
 ms.service: defender-xdr
 f1.keywords:
@@ -196,8 +196,6 @@ One of the most powerful protections you can configure is Conditional Access App
 
 You might already have SaaS apps added to your Microsoft Entra tenant to enforce multi-factor authentication and other conditional access policies. Microsoft Defender for Cloud Apps natively integrates with Microsoft Entra ID. All you must do is configure a policy in Microsoft Entra ID to use Conditional Access App Control in Defender for Cloud Apps. This routes network traffic for these managed SaaS apps through Defender for Cloud Apps as a proxy, which allows Defender for Cloud Apps to monitor this traffic and to apply session controls.
 
->> Rework figure
-
 :::image type="content" source="./media/eval-defender-xdr/m365-defender-mcas-architecture-e.svg" alt-text="A diagram that shows the architecture for the Microsoft Defender for Cloud Apps with SaaS apps." lightbox="./media/eval-defender-xdr/m365-defender-mcas-architecture-e.svg":::
 
 In this illustration:

defender-xdr/pilot-deploy-defender-endpoint.md

@@ -1,6 +1,6 @@
 ---
-title: Pilot and deploy Microsoft Defender for Endpoint
-description: Pilot and deploy Microsoft Defender for Endpoint.
+title: How do I pilot and deploy Microsoft Defender for Endpoint?
+description: How to pilot and deploy Microsoft Defender for Endpoint in your production Microsoft 365 tenant.
 search.appverid: met150
 ms.service: defender-xdr
 f1.keywords:

defender-xdr/pilot-deploy-defender-identity.md

@@ -1,6 +1,6 @@
 ---
-title: Pilot and deploy Microsoft Defender for Identity
-description: Pilot and deploy Microsoft Defender for Identity.
+title: How do I pilot and deploy Microsoft Defender for Identity>
+description: How to pilot and deploy Microsoft Defender for Identity in your production Microsoft 365 tenant.
 search.appverid: met150
 ms.service: defender-xdr
 f1.keywords: 

defender-xdr/pilot-deploy-defender-office-365.md

@@ -1,6 +1,6 @@
 ---
-title: Pilot and deploy Defender for Office 365
-description: Pilot and deploy Defender for Office 365.
+title: How do I pilot and deploy Defender for Office 365?
+description: How to pilot and deploy Microsoft Defender for Office 365 in your production Microsoft 365 tenant.
 search.appverid: met150
 ms.service: defender-xdr
 f1.keywords:
@@ -91,7 +91,7 @@ The following table describes this illustration.
 | 3 | Exchange Online integrates with Microsoft Defender for Office 365 to offer more advanced threat protection, mitigation, and remediation. |
 | 4  |A message that isn't malicious, blocked, or quarantined is processed and delivered to the recipient in EXO where user preferences related to junk mail, mailbox rules, or other settings are evaluated and triggered. |
 | 5 | Integration with on-premises Active Directory can be enabled using Microsoft Entra Connect to synchronize and provision mail-enabled objects and accounts to Microsoft Entra ID and ultimately Exchange Online. |
-| 6 | When integrating an on-premises environment, it's encouraged to use an Exchange server for supported management and administration of mail-related attributes, settings, and configurations. |
+| 6 | When integrating an on-premises environment, it's best to use an Exchange server for supported management and administration of mail-related attributes, settings, and configurations. |
 | 7 | Microsoft Defender for Office 365 shares signals to Microsoft Defender XDR for extended detection and response (XDR). |
 
 On-premises integration is common but optional. If your environment is cloud-only, this guidance also works for you.
@@ -269,4 +269,4 @@ Continue your end-to-end deployment of Microsoft Defender XDR with [Pilot and de
 
 :::image type="content" source="./media/eval-defender-xdr/defender-xdr-pilot-deploy-flow-endpoint.svg" alt-text="A diagram that shows Microsoft Defender for Endpoint in the pilot and deploy Microsoft Defender XDR process." lightbox="./media/eval-defender-xdr/defender-xdr-pilot-deploy-flow-endpoint.svg":::
 
-[!INCLUDE [Microsoft Defender XDR rebranding](../includes/defender-m3d-techcommunity.md)]
+[!INCLUDE [Microsoft Defender XDR rebranding](../includes/defender-m3d-techcommunity.md)]

defender-xdr/pilot-deploy-investigate-respond.md

@@ -1,6 +1,6 @@
 ---
-title: Investigate and respond using Microsoft Defender XDR
-description: Investigate and respond using Microsoft Defender XDR.
+title: How do I investigate and respond using Microsoft Defender XDR?
+description: How to investigate and respond to cyberattacks using Microsoft Defender XDR.
 search.appverid: met150
 ms.service: defender-xdr
 f1.keywords: 
@@ -48,8 +48,6 @@ Here is the workflow for investigating and responding to incidents using Microso
 
 :::image type="content" source="./media/eval-defender-xdr/defender-investigate-respond-pilot-deploy-steps.svg" alt-text="A diagram that shows the steps to do incident investigation and response." lightbox="./media/eval-defender-xdr/defender-investigate-respond-pilot-deploy-steps.svg":::
 
->> Update figure
-
 Follow these steps:
 
 1. [Simulate attacks with the Microsoft Defender portal](#step-1)
@@ -101,7 +99,7 @@ Here are the Defender for Endpoint simulations from Microsoft:
 - Document drops backdoor
 - Automated investigation (backdoor)
 
-There are additional simulations from third-party sources. There are also a set of tutorials.
+There are additional simulations from third-party sources. There is also a set of tutorials.
 
 For each simulation or tutorial:
 

defender-xdr/pilot-deploy-overview.md

@@ -1,6 +1,6 @@
 ---
-title: Pilot and deploy Microsoft Defender XDR
-description: How do I pilot and deploy Microsoft Defender XDR in my production tenant?
+title: How do I pilot and deploy Microsoft Defender XDR?
+description: How to pilot and deploy Microsoft Defender XDR and its components in your production Microsoft 365 tenant.
 search.appverid: met150
 ms.service: defender-xdr
 f1.keywords: