Skip to main content
Matrix42 Self-Service Help Center

Endpoint Protection III: Threat Detection

Threat Detection

Whenever a device is protected by the Microsoft Defender and a threat is reported, the following information is displayed under Endpoint Protection > Threat Detection: 

Information Description
Threat ID Displays the ID of a threat that has been detected by Windows Defender.
Name Displays the name of the specific threat.
URL Provides a URL link for additional threat information.
Severity

Displays on of the following the severity level

  • Unknown
  • Low
  • Moderate
  • High
  • Severe
Category Displays the correspondng Threat category for the detected threat. Please review the full list here: Defender CSP
Detections Displays the number of times this threat has been detected on a particular client.

List

By selecting the Threat Detection navigation item, a list of detected threats is displayed.

clipboard_e76a43688b53ec67bb217c1db6a8feb4b.png

Details

By selecting a Thread, a list of affected computers with the initial detection time, last threat status change and current status is shown. 

clipboard_e37b7a7d45e762a7e88f6990ec4b4fcdf.png

  • Was this article helpful?