Microsoft Defender XDR: Retirement of in-app OS update notifications in Defender for Endpoint (iOS)

🚨 The Signal: Microsoft Defender for Endpoint on iOS will no longer provide in-app OS update notifications. OS update compliance will now solely rely on Microsoft Intune, streamlining management and removing redundant messaging for iOS devices.

The Impact

Organizations using Defender for Endpoint on iOS are affected, with a low security risk as OS patching remains enforced via Intune.

• Security Teams: No longer receive OS update alerts from Defender for Endpoint on iOS.
• Admins: Manage iOS OS updates solely through Intune, simplifying policy.
• End Users: Will only receive OS update prompts from Intune, reducing confusion.

The Action

1. Review existing Microsoft Intune iOS OS update policies to ensure they meet compliance requirements.
2. Verify that all iOS devices are correctly enrolled and managed by Microsoft Intune.
3. Communicate the change to relevant IT and security teams to ensure awareness of the consolidated OS update management.

Domain: Intune · Impact: low · Workload: Microsoft Defender · Essential Eight: Patch Operating Systems · ISM: ISM-1407, ISM-1501, ISM-1621, ISM-1622, ISM-1623, ISM-1654, ISM-1655, ISM-1694, ISM-1695, ISM-1696, ISM-1701, ISM-1702, ISM-1877, ISM-1889, ISM-1902