Merge pull request #3547 from MicrosoftDocs/main

[AutoPublish] main to live - 04/22 15:32 PDT | 04/23 04:02 IST

Author: Ruchika-mittal01

defender-endpoint/mac-whatsnew.md

@@ -64,6 +64,19 @@ If an end user encounters a prompt for Defender for Endpoint on macOS processes
 
 Behavior monitoring monitors process behavior to detect and analyze potential threats based on the behavior of the applications, daemons, and files within the system. As behavior monitoring observes how the software behaves in real-time, it can adapt quickly to new and evolving threats and block them. To learn more, see [Behavior Monitoring in Microsoft Defender for Endpoint on macOS](behavior-monitor-macos.md).
 
+### Apr-2025 (Build: 101.25032.0006  | Release version: 20.125032.6.0)
+
+| Build:             | **101.25032.0006**         |
+|--------------------|-----------------------|
+| Release version:   | **20.125032.6.0** |
+| Engine version:    | **1.1.25020.3000**       |
+| Signature version: | **1.427.158.0**      |
+
+##### What's new
+
+- Hardware UUID is now displayed in the Security Portal
+- Bug and performance fixes
+
 ### Mar-2025 (Build: 101.25022.0003  | Release version: 20.125022.3.0)
 
 | Build:             | **101.25022.0003**    |

defender-office-365/mdo-support-teams-sec-ops-guide.md

@@ -16,7 +16,7 @@ ms.collection:
   - tier1
 description: A prescriptive playbook for SecOps personnel to manage Microsoft Teams protection in Microsoft Defender for Office 365.
 ms.service: defender-office-365
-ms.date: 04/16/2025
+ms.date: 04/22/2025
 appliesto:
   - ✅ <a href="https://learn.microsoft.com/defender-office-365/mdo-about#defender-for-office-365-plan-1-vs-plan-2-cheat-sheet" target="_blank">Microsoft Defender for Office 365 Plan 2</a>
 ---
@@ -69,15 +69,10 @@ SecOps team members can use threat hunting or information from external threat i
 
 SecOps team members can triage and respond to false positive Teams messages (good messages blocked) on the **Quarantine** page in Defender for Office 365 at <https://security.microsoft.com/quarantine>.
 
-- Teams messages detected by zero-hour auto protection (ZAP) are available on the **Teams messages** tab. SecOps team members can [take action](quarantine-admin-manage-messages-files.md#take-action-on-quarantined-teams-messages) on these messages. For example, preview messages, download messages, submit messages to Microsoft for review, and release the messages from quarantine.
+Teams messages detected by zero-hour auto protection (ZAP) are available on the **Teams messages** tab. SecOps team members can [take action](quarantine-admin-manage-messages-files.md#take-action-on-quarantined-teams-messages) on these messages. For example, preview messages, download messages, submit messages to Microsoft for review, and release the messages from quarantine.
 
-  > [!TIP]
-  > Teams messages released from quarantine are available to senders and recipients in the original location in Teams chats and channel posts.
-
-- Files in Teams messages detected by Safe Attachments for SharePoint, OneDrive, and Microsoft Teams are available on the **Files** tab. SecOps team members can [take action](quarantine-admin-manage-messages-files.md#take-action-on-quarantined-files) on these files. For example, view file details, download files, submit messages to Microsoft for review, and release the files from quarantine.
-
-  > [!TIP]
-  > Files released from quarantine are available to users in the original location in SharePoint, OneDrive, and Teams.
+> [!TIP]
+> Teams messages released from quarantine are available to senders and recipients in the original location in Teams chats and channel posts.
 
 ## Enable SecOps to hunt for threats and detections in Microsoft Teams
 
@@ -88,6 +83,10 @@ SecOps team members can proactively hunt for potentially malicious Teams message
   - **URL click** tab: This tab contains all user clicks on URLs in email, in supported Office files in SharePoint and OneDrive, and in Microsoft Teams. You can use the [available filters](threat-explorer-real-time-detections-about.md#filterable-properties-in-the-url-clicks-view-in-threat-explorer) to hunt on detection data.
 
 - On the **Advanced hunting** page in the Defender portal at <https://security.microsoft.com/v2/advanced-hunting>. The following hunting tables are available for Teams-related threats:
+
+  > [!NOTE]
+  > The hunting tables are currently in Preview.
+
   - [MessageEvents](/defender-xdr/advanced-hunting-messageevents-table): Contains raw data about every internal and external Teams message that included a URL. Sender address, Sender display name, Sender type, and more are available in this table.
   - [MessagePostDeliveryEvents](/defender-xdr/advanced-hunting-messagepostdeliveryevents-table): Contains raw data about ZAP events on Teams messages.
   - [MessageUrlInfo](/defender-xdr/advanced-hunting-messageurlinfo-table): Contains raw data about URLs in Teams messages.

defender-xdr/pilot-deploy-defender-office-365.md

@@ -18,7 +18,7 @@ ms.collection:
   - highpri
   - tier1
 ms.topic: concept-article
-ms.date: 05/31/2024
+ms.date: 04/22/2025
 appliesto:
   - Microsoft Defender XDR
 #customer intent: To learn how to pilot and deploy Microsoft Defender for Office 365 in your production Microsoft 365 tenant. 
@@ -32,14 +32,12 @@ This article assumes you have a production Microsoft 365 tenant and are piloting
 
 Defender for Office 365 contributes to a Zero Trust architecture by helping to prevent or reduce business damage from a breach. For more information, see the [Prevent or reduce business damage from a breach](/security/zero-trust/adopt/prevent-reduce-business-damage-breach) business scenario in the Microsoft Zero Trust adoption framework.
 
-<!---
 > [!TIP]
 > For information about configuring protection for Microsoft Teams, see the following articles:
 >
 > - [Microsoft Defender for Office 365 Plan 2 support for Microsoft Teams](/defender-office-365/mdo-support-teams-about)
 > - [Quickly configure Microsoft Teams protection in Microsoft Defender for Office 365 Plan 2](/defender-office-365/mdo-support-teams-quick-configure)
 > - [Security Operations Guide for Teams protection in Microsoft Defender for Office 365](/defender-office-365/mdo-support-teams-sec-ops-guide)
---->
 
 ## End-to-end deployment for Microsoft Defender XDR