MC1191616 - Microsoft Secure Score: New recommendations for Microsoft Defender for Endpoint

Introduction

We’re introducing new Microsoft Secure Score recommendations for Microsoft Defender for Endpoint (MDE) to help organizations strengthen their security posture. These recommendations are designed to proactively block common attack techniques and improve endpoint protection.

When this will happen

Public Preview: Rollout will begin at the end of November 2025 and is expected to complete by mid-December 2025.

How this affects your organization

Who is affected: Admins managing Microsoft Defender for Endpoint and Microsoft Secure Score.

Licensing requirements: This functionality is available to Microsoft 365 E5 customers or those with Microsoft Defender for Endpoint Plan 2 (P2).

What will happen:

• Customers in Public Preview will see new recommendations in Microsoft Secure Score:
  • Disable Remote Registry Service on Windows
• Secure Score will update based on the implementation of these recommendations.

What you can do to prepare

• Review the new recommendations in Microsoft Secure Score once available.
• Complete the recommended actions to improve your organization’s security posture.
• Communicate these changes to your security and endpoint management teams.

Learn more: 

• Microsoft Defender XDR | Microsoft Defender | Microsoft Learn
• Microsoft Secure Score | Microsoft Defender XDR | Microsoft Defender | Microsoft Learn

Compliance considerations

No compliance considerations identified, review as appropriate for your organization.