This is the Trace Id: eb3240c52814828dc18dbeba022ef41e
Skip to main content Why Microsoft Security AI-powered cybersecurity Cloud security Data security & governance Identity & network access Privacy & risk management Security for AI Unified SecOps Zero Trust Microsoft Defender Microsoft Entra Microsoft Intune Microsoft Priva Microsoft Purview Microsoft Sentinel Microsoft Security Copilot Microsoft Entra ID (Azure Active Directory) Microsoft Entra Agent ID Microsoft Entra External ID Microsoft Entra ID Governance Microsoft Entra ID Protection Microsoft Entra Internet Access Microsoft Entra Private Access Microsoft Entra Permissions Management Microsoft Entra Verified ID Microsoft Entra Workload ID Microsoft Entra Domain Services Azure Key Vault Microsoft Sentinel Microsoft Defender for Cloud Microsoft Defender XDR Microsoft Defender for Endpoint Microsoft Defender for Office 365 Microsoft Defender for Identity Microsoft Defender for Cloud Apps Microsoft Security Exposure Management Microsoft Defender Vulnerability Management Microsoft Defender Threat Intelligence Microsoft Defender Suite for Business Premium Microsoft Defender for Cloud Microsoft Defender Cloud Security Posture Mgmt Microsoft Defender External Attack Surface Management GitHub Advanced Security Microsoft Defender for Endpoint Microsoft Defender XDR Microsoft Defender for Business Microsoft Intune core capabilities Microsoft Defender for IoT Microsoft Defender Vulnerability Management Microsoft Intune Advanced Analytics Microsoft Intune Endpoint Privilege Management Microsoft Intune Enterprise Application Management Microsoft Intune Remote Help Microsoft Cloud PKI Microsoft Purview Communication Compliance Microsoft Purview Compliance Manager Microsoft Purview Data Lifecycle Management Microsoft Purview eDiscovery Microsoft Purview Audit Microsoft Priva Risk Management Microsoft Priva Subject Rights Requests Microsoft Purview Data Governance Microsoft Purview Suite for Business Premium Microsoft Purview data security capabilities Pricing Services Partners Cybersecurity awareness Customer stories Security 101 Product trials Industry recognition Microsoft Security Insider Microsoft Digital Defense Report Security Response Center Microsoft Security Blog Microsoft Security Events Microsoft Tech Community Documentation Technical Content Library Training & certifications Compliance Program for Microsoft Cloud Microsoft Trust Center Service Trust Portal Microsoft Secure Future Initiative Business Solutions Hub Contact Sales Start free trial Microsoft Security Azure Dynamics 365 Microsoft 365 Microsoft Teams Windows 365 Microsoft AI Azure Space Mixed reality Microsoft HoloLens Microsoft Viva Quantum computing Sustainability Education Automotive Financial services Government Healthcare Manufacturing Retail Find a partner Become a partner Partner Network Microsoft Marketplace Marketplace Rewards Software development companies Blog Microsoft Advertising Developer Center Documentation Events Licensing Microsoft Learn Microsoft Research View Sitemap

Strengthen your Zero Trust posture—a new, unified approach to security is here

Read the blog

Supercharge your security operations

Accelerate security operations center (SOC) response with incident-level visibility and automatic cyberattack disruption with extended detection and response (XDR).

Watch the video

Learn how to close security gaps

Coordinate cyberthreat response across your entire digital estate and quickly stop cyberattacks with Microsoft Defender XDR (formerly Microsoft 365 Defender), a unified, AI-powered XDR solution.

Get the e-book

Get true visibility with one solution

Build a unified defense across your multiplatform, multicloud environment.

Rapidly respond with XDR-prioritized incidents

Remediate cyberthreats efficiently with a complete view of the cyberattack chain informed by 78 trillion daily signals and prioritized investigation and response at the incident level.

Disrupt advanced cyberattacks at machine speed

Stop lateral movement of advanced cyberattacks, such as ransomware and business email compromise, with advanced AI capabilities that automatically isolate compromised devices and user accounts.

Unify security and identity access management

Protect your hybrid identities and identity infrastructure from credential theft and other cyberthreats with the seamless integration of Microsoft Entra ID (formerly Azure Active Directory) and Defender XDR.

Transform SOC productivity with generative AI

Respond to cyberthreats faster with step-by-step guidance, empower any analyst to build queries in natural language, and reverse-engineer adversarial scripts in seconds. Microsoft Copilot generative AI is now available in Microsoft Defender XDR.  

Stop cyberattacks and coordinate response
across domains with XDR.

Watch the video

Optimize SOC operations with Microsoft Defender XDR

Empower security teams to effectively detect and respond to cyberthreats with expanded visibility, incident-level investigation tools, and built-in automation.

A diagram outlining the steps of Extended Detection Response
More about the diagram

Explore Microsoft Defender XDR

Secure your multiplatform endpoints, hybrid identities, email, collaboration tools, apps, and cloud with unified XDR.

Learn more about Microsoft Defender XDR
Endpoint security Identity security Email and collaboration security Cloud app security

Endpoint security

Discover and secure endpoint devices across your multiplatform enterprise with industry-leading endpoint detection and response (EDR).

Learn more

Identity security

Protect your hybrid identities and workload scripts with cloud-based intelligence sharing.

Learn more

Email and collaboration security

Safeguard your emails, documents, and collaboration tools from advanced cyberthreats such as phishing and ransomware.

Learn more

Cloud app security

Secure your cloud apps with unified visibility, data protection, and posture management.

Learn more
Back to tabs

Microsoft Defender Experts for XDR

Extend your security operations center (SOC) coverage and reduce your risk of compromise with a managed XDR service that provides triage, investigation, and incident response to quickly and effectively stop cyberattackers.

Learn more about Defender Experts for XDR

See Copilot in Microsoft Defender XDR

Watch how Copilot helps you investigate and complete complex tasks such as threat hunting, reverse-engineering malware, and incident reporting.
Watch the demo Learn more about Microsoft Security Copilot

Unified security operations platform

Secure your digital estate with the only security operations (SecOps) platform that unifies the full capabilities of extended detection and response (XDR) and security information and event management (SIEM).

Animation of microsoft defender dashboard homepage

Unified portal

Detect and disrupt cyberthreats in near-real time and streamline investigation and response.

Learn more about Microsoft unified XDR and SIEM
Back to tabs

Industry recognition

Microsoft Security is a recognized industry leader.

Learn more
MITRE ATT&CK

Industry-leading protection

Microsoft Defender XDR (formerly Microsoft 365 Defender) demonstrated industry-leading protection in MITRE Engenuity’s independent ATT&CK® Enterprise Evaluations.

Read the blog

The Total Economic Impact™ Of Microsoft Defender XDR

Learn about the potential return on investment that enterprises may realize by deploying Microsoft Defender XDR (formerly Microsoft 365 Defender).1

Get the study
Four people seated at a conference table with laptops and tablets having a conversation

See why customers trust XDR from Microsoft

ING
“A single layer of detection isn’t strong enough and is prone to some level of false positive. …On the other hand, Microsoft Defender XDR (formerly Microsoft 365 Defender) correlates signals across endpoints, email, documents, identity, apps, and more.”

- Krzysztof Kuźnik, Product Owner, ING

Read the ING story

Additional XDR resources

Infographic

Microsoft XDR Infographic

Get an overview of how XDR stops cyberattacks and coordinates responses across assets.

View the infographic
Blog

Automatically disrupt ransomware with Microsoft Defender XDR

Learn how built-in XDR cyberattack-disruption capabilities help stop the progression of advanced cyberattacks.

Read the blog
Blog

Microsoft Defender XDR Blog

Explore the latest Microsoft Defender XDR updates, news, and best practices.

Read the blog
Article

Benefits of Automated XDR Platforms

Get strategies for addressing the security labor shortage with AI and learn how to strengthen identity and access security with comprehensive XDR.

Download the article

Protect everything

Make your future more secure. Explore your security options today.

Contact Sales Start a free trial
[1] The Total Economic Impact™ Of Microsoft Defender XDR (formerly Microsoft 365 Defender), a commissioned study conducted by Forrester Consulting, April 2022.

Follow Microsoft Security

Surface Pro Surface Laptop Copilot for organizations Copilot for personal use Microsoft 365 Explore Microsoft products Windows 11 apps Account profile Download Center Returns Order tracking Microsoft in education Devices for education Microsoft Teams for Education Microsoft 365 Education Office Education Educator training and development Deals for students and parents Azure for students
Microsoft AI Microsoft Security Azure Dynamics 365 Microsoft 365 Microsoft Advertising Microsoft 365 Copilot Microsoft Teams Microsoft Developer Microsoft Learn Support for AI marketplace apps Microsoft Tech Community Microsoft Marketplace Microsoft Power Platform Marketplace Rewards Visual Studio Careers About Microsoft Company news Investors Sustainability
English (Malaysia)
Your Privacy Choices Opt-Out Icon Your Privacy Choices
Consumer Health Privacy Contact Microsoft Privacy Manage cookies Terms of use Trademarks About our ads