Lately, Microsoft announced rolling out new capabilities within its Defender for Containers and Microsoft 365 Defender to fight Log4j vulnerabilities. Following the update, the Defender can continuously monitor and detect vulnerabilities.
In the latest update, Microsoft Defender adds a dedicated Log4j dashboard where you can see a detailed view of the identified vulnerabilities.
Microsoft Defender’s new update allows users to identify Log4j library components. Furthermore, the defender tool also includes a new advanced hunting schema “DeviceTvmSoftwareEvidenceBeta” which brings file-level findings from the disk and allows users to associate them with added context.
Microsoft additionally said the update will apply to 365, Microsoft Defender for Containers, and Microsoft Defender for Endpoint. The updates are compatible with Windows 10 and 11, Windows Server 2008, 2012, and 2016. The Linux users can also leverage the new Microsoft Defender tools by updating Defender for Linux to version 101.52.57 or later.
Earlier this month, Microsoft rolled out Microsoft Defender for Containers aimed to safeguard containers. The recent update allows identifying images vulnerable to Log4j. Defender scans for any vulnerabilities while the images are either pulled from or pushed to an Azure container registry.
By notifying about any issues, the Defender for cloud minimizes the potential for unwanted informational alerts.
While Apache is rolling out updates to patch the Log4j vulnerability, Microsoft also updated its defender to help its users detect and fix this vulnerability.
Looking for more Microsoft news? Signup for our news later for the latest update