Microsoft Defender for Endpoint will migrate the internal operations of the Endpoint Attack Notifications feature to a new system starting early May 2024. Some MDE prior certifications will not transfer to one component of the new system, but there will be no other changes in service or user experience. No action is needed to prepare for this rollout, but admins should be notified and relevant documentation updated. Opt-out is available in the Defender XDR portal.
You are currently enrolled in or eligible for the Endpoint Attack Notifications feature of Microsoft Defender for Endpoint (MDE). To provide improved service, we are migrating the internal operations of the Endpoint Attack Notifications feature to a new system.
When this will happen:
Worldwide: We will begin rolling out early May 2024 and expect to complete by early May 2024.
How this will affect your organization:
As part of this rollout, several MDE prior certifications (ISO 27001, ISO27018, ISO27017, ISO 27701, HIPAA and SOC 2) will not transfer to one component of the new system. This component is in the process of re-attaining ISO 27001, ISO27018, ISO27017, ISO 27701, HIPAA certifications in July 2024 and SOC 2 in November 2024.
There will be no other changes in service or user experience.
What you need to do to prepare:
If you have already enrolled and wish to opt out, go to Settings > Endpoints > Advanced features page in the Defender XDR portal.
No action is needed from you to prepare for this rollout. You may want to notify your admins about this change and update any relevant documentation as appropriate.
To learn more: Endpoint Attack Notifications | Microsoft Learn