Ovaj preglednik više nije podržan.
Nadogradite na Microsoft Edge da iskoristite najnovije osobine, sigurnosna ažuriranja i tehničku podršku.
Applies to:
Platforms:
Known limitations:
This table shows the Intel TDT technologies Microsoft collaborated with Intel on to provide security while also balancing performance:
| Available since | Intel TDT technology | Intel Threat Detection Technology (TDT) available on |
|---|---|---|
| 2018 | Intel TDT – Accelerated Memory Scanning (AMS) | Intel integrated graphic sixth Gen Core (circa 2015) or newer family of processors, running on laptops, tablets, and desktop systems. |
| 2021 | Intel TDT - Cryptojacking detector | Intel sixth Gen Core (circa 2015) or newer family of processors, running on laptops, tablets, and desktop systems. |
| 2022 | Intel TDT - Ransomware detector | Intel eighth Gen Core or newer family of processors. |
Intel Threat Detection Technology (TDT) - Accelerated Memory Scanning (AMS): Introduced extra memory scanning capabilities to detect fileless attacks that are expensive on the Central Processing Unit (CPU), and then offload them to the integrated Graphics Processor Unit (integrated GPU). Two benefits are:
Intel Threat Detection Technology (TDT) - Cryptojacking: Enhanced detection by using Intel's Central Processing Unit (CPU) performance monitoring unit (PMU) and offloading to the integrated Graphics Processor Unit (integrated GPU) to detect the malware code execution (fingerprint) of repeated mathematical operations at runtime. Machine learning processes signals with minimal overhead.
Enabled by default when Microsoft Defender Antivirus is running.
The regular Microsoft Defender Antivirus Event ID 1116.
We use the Intel TDT - Cryptojacking detector to thwart various cryptojacking malware. The following Coinminer campaigns were successfully detected and blocked using the TDT Cryptojacking detector: YouTube Pirated Software Videos Deliver Triple Threat: Vidar Stealer, LaPlasa Clipper, XMRig Miner
We use the Intel TDT detector to identify instances of CryptoJacking malware abusing Windows binaries (lolbins), and then employ Defender behavior monitoring to prevent and block such activities effectively. For more information, see Hardware-based threat defense against increasingly complex cryptojackers.
Obučavanje
Modul
Implement Windows security enhancements with Microsoft Defender for Endpoint - Training
Implement Windows security enhancements with Microsoft Defender for Endpoint
Certifikacija
Microsoft Certified: Security Operations Analyst Associate - Certifications
Investigate, search for, and mitigate threats using Microsoft Sentinel, Microsoft Defender for Cloud, and Microsoft 365 Defender.
Dokumentacija
Enable block at first sight to detect malware in seconds - Microsoft Defender for Endpoint
Turn on the block at first sight feature to detect and block malware within seconds.
Built-in protection helps guard against ransomware - Microsoft Defender for Endpoint
Learn how built-in protection protects against ransomware as part of Microsoft Defender for Endpoint.
Turn on cloud protection in Microsoft Defender Antivirus - Microsoft Defender for Endpoint
Turn on cloud protection to benefit from fast and advanced protection features.