Microsoft Defender now prevents threats on endpoints during an attack Predictive shielding in Defender not only responds instantly during an attack but also jumps ahead of attackers, predicting and preventing the next move before it happens with just-in-time hardening controls that block specific attacker techniques to protect critical assets. It acts in two steps: 1. As soon as a compromised asset is contained, Defender predicts the attack paths and tactics the adversary will use next, in many cases narrowing down tens of thousands of possible pathways to just a few with the highest likelihood. 2. Then, it jumps ahead of the attacker and shields those pathways by using just-in-time hardening methods, giving the attacker nowhere to go. Learn more: techcommunity.microsoft.com/blog/microsoft… YouTube: youtu.be/jDRmPoXIaL8?si… #SkilledByMTT #MicrosoftIgnite

@ITSupportBlog Why not apply that hardening from the beginning ?

@ITSupportBlog The new deployment tool also looks nice.

@ITSupportBlog life is getting harder for APTs and RAAS gangs. As well as red teamers. They all need to step their game up. In 2026, you should not be getting popped by ransomware if you have a solid EDR in place like MDE, PA XDR, Elastic and of course the best in the business Crowdstrike

@ITSupportBlog Real experience. Two days ago my admin account was "Contained" after a Lssa minidump attempt. I just re enabled my account to see what's happen. Yesterday I discovered that user GPO was no more applied when I rdp to server. Nltest dclist ko etc.. Rpc was denied on DC by contained