Proofpoint Inc integrates with Microsoft Defender

---

---

Proofpoint Inc., a leading cybersecurity and compliance company, today announced integration with Microsoft Defender to provide organizations with advanced threat protection across email and endpoints. Announced during Microsoft’s 2022 Ignite conference, Proofpoint’s Targeted Attack Protection (TAP) will share intelligence on email threats between Proofpoint and Microsoft Defender to enhance device security and thwart attackers. Integration is expected to be available in early 2023.

As security teams have grappled with enabling remote and hybrid workforces while combatting skyrocketing advanced threats, more than half of global CISOs indicate they have experienced an increase in targeted attacks over the past 12 months. Proofpoint’s annual Voice of the CISO report, which surveys 1,400 global CISOs, also revealed that 50 percent confess their organization is not ready to detect, deter and recover from a cyber-attack, with many admitting that they lack visibility into the kinds of threats they face.

“Whether it is ransomware, cyber-enabled financial fraud, or cloud account compromise, more than 90 percent of cyber-attacks start with email, and that’s why protecting the inbox is always the best place to start with Microsoft 365 security,” said Ryan Kalember, executive vice president, cybersecurity strategy, Proofpoint. “With these new integrations between Microsoft and Proofpoint, security teams are equipped with enhanced visibility across email and endpoints, while automated threat prioritization alleviates significant time spent by incident responders on investigating, triaging, and remediating threats.” 

The new integrations can be deployed in a matter of minutes via cloud-to-cloud APIs, ensuring mutual customers can utilize their detection engines in concert to stop attacks. Proofpoint Targeted Attack Protection (TAP) will receive visibility on email threats via Microsoft Defender API. In addition, the integration will add unique new hashes to the customer’s Microsoft Defender custom intelligence. Once the Proofpoint IOC details are added to Microsoft Defender, an alert will then be created by Microsoft Defender if related malicious content tries to execute on the device.

Joint customers look to Proofpoint Targeted Attack Protection’s threat intelligence to help security teams stay ahead of attackers by detecting, analyzing, and blocking advanced threats. This includes advanced email threats delivered through malicious attachments and URLs, zero-day threats, polymorphic malware, fileless malware, weaponized documents, and phishing attacks. These capabilities complement Microsoft Defender for Endpoint, which delivers preventative protection, post-breach detection, automated investigation, and response.

“More than 80 percent of the Fortune 100 bolster their Microsoft 365 security with Proofpoint’s technology, and we’re proud to collaborate with Microsoft to keep people and corporate data safe through our integrations,” said Darren Lee, executive vice president and general manager, security products and services group, Proofpoint.