You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: defender-vulnerability-management/whats-new-in-microsoft-defender-vulnerability-management.md
+6-3Lines changed: 6 additions & 3 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -24,10 +24,13 @@ This article provides information about new features and important product updat
24
24
## November 2025
25
25
26
26
- (Preview) **Microsoft Secure Score now includes new recommendations** to help organizations proactively prevent common endpoint attack techniques.
27
+
-**Require LDAP client signing** and **Require LDAP server signing** - helps ensure integrity of directory requests so attackers can't tamper with or manipulate group memberships or permissions in transit.
28
+
-**Encrypt LDAP client traffic** - prevents exposure of credentials and sensitive user information by enforcing encrypted communication instead of clear-text LDAP.
29
+
-**Enforce LDAP channel binding** - stops adversaries from hijacking or relaying authentication sessions by binding New Technology LAN Manager (NTLM) authentication to a secure TLS channel.
27
30
- (GA) These Microsoft Secure Score recommendations are now generally available:
28
-
-**Block web shell creation on servers**.
29
-
-**Block use of copied or impersonated system tools**.
30
-
-**Block rebooting a machine in Safe Mode**.
31
+
-**Block web shell creation on servers**
32
+
-**Block use of copied or impersonated system tools**
0 commit comments