Findings
Generator
Configuration
Lucidum Reverse
Architecture
Statistics
← All Findings
Vendor:
Microsoft Defender for Endpoint
FIN-239
Weight:
5
4
3
2
1
Confidence:
High
Medium
Low
Edited:
2026-03-06 09:04
Verified
What It Detects
The Microsoft Defender for Endpoint sensor on this device has impaired communication with the cloud service. The sensor may be running locally but cannot reliably send telemetry or receive updated detection rules and policies.
MITRE ATT&CK Techniques
Comma-separated, e.g. T1078, T1190
Checks
read-only
Field
Operator
Value
healthStatus
in
['ImpairedCommunication', 'NoSensorDataImpairedCommunication']
Remediation
×
×
×
×
+ Add item
Why It Matters
×
×
×
+ Add item
Save Changes
Export Lucidum