MS-102 Manage security and threats by using Microsoft Defender XDR • Set 18
MS-102 Manage security and threats by using Microsoft Defender XDR Practice Test 18 — 15 questions with explanations. Free, no signup.
Your organization uses Microsoft Defender for Endpoint (Plan 2) and Microsoft Defender for Identity. A user reports that their device is running slowly and exhibiting unusual network traffic. You investigate in Microsoft Defender XDR and see a high number of alerts for the device. You need to determine if the device is compromised and, if so, initiate an automated investigation. What should you do first?