Using Windows Defender telemetry to help mitigate malware attacks (Article)

By | August 9, 2016

Proactively understanding security vulnerabilities and mitigating malware attacks is critical to providing a trusted computing environment. Microsoft IT uses telemetry collected from Windows Defender and System Center 2012 Endpoint Protection to help us respond to attacks with a data-driven, prioritized approach. Telemetry helps us spot trends in malware behavior and identify the top types of malware and triggers so that we can respond to infections, invest in appropriate protection, and monitor patterns.