Microsoft Defender Adds Account Hacking Function to Counterattack

Microsoft Introduces New Defender for Endpoint Feature to Stop Oparaman-Operated Attacks on Users

Microsoft has recently unveiled a new function for its Defender for Endpoint called “Contain user.” This feature aims to automatically interrupt attacks by isolating compromised user accounts and blocking lateral movement within the attack. Details of the new feature can be found in Microsoft’s blog post here.

Referred to as “Hands-on-Keyboard,” this type of attack involves attackers having physical access to a system or remote control over it. Such attacks enable the perpetrators to carry out various malicious activities, such as installing malware, stealing data, altering system settings, intercepting passwords, and more.

/Reports, release notes, official announcements.