HackTool:PowerShell/Mimikatz.E

Keep your operating system and antivirus products up-to-date.

To learn more about preventing trojans or other malware from affecting individual devices, read about malware and malware protection. For more tips on how to keep your device safe, go to the Microsoft security help & learning portal.

Guidance for enterprise administrators

Following the mitigation steps below can help prevent malware attacks:

• Educate users about protecting personal and business information in social media, filtering unsolicited communication, identifying lures in spear-phishing email and watering holes, and reporting reconnaissance attempts and other suspicious activity.
• Turn on cloud-delivered protection and automatic sample submission on Microsoft Defender Antivirus. These capabilities use artificial intelligence and machine learning to quickly identify and stop new and unknown variants.
• Turn on attack surface reduction rules, including rules that block credential theft, ransomware activity, and suspicious use of PsExec and WMI. To address malicious activity initiated through weaponized Office documents, use rules that block advanced macro activity, executable content, process creation, and process injection initiated by Office applications. To assess the impact of these rules, deploy them in audit mode.
• Turn on tamper protection features to prevent attackers from stopping security services.