Microsoft Defender AV must be configured to prevent user and apps from accessing dangerous websites.

An XCCDF Rule

Details
Profiles

Description

Enable Microsoft Defender Exploit Guard network protection to prevent employees from using any application to access dangerous domains that may host phishing scams, exploit-hosting sites, and other malicious content on the internet.

ID: SV-213463r823095_rule
Version: WNDF-AV-000039
Severity: Medium
References: CCI-001170
Updated: 5 days ago

Remediation Templates

Set the policy value for Computer Configuration >> Administrative Templates >> Windows Components >> Microsoft Defender Antivirus >> Windows Defender Exploit Guard >> Network Protection >> "Prevent users and apps from accessing dangerous websites" to "Enabled" and select "Block" in the drop-down box.

Microsoft Defender AV must be configured to prevent user and apps from accessing dangerous websites.

Description

Remediation Templates

A Manual Procedure