Disabling Server Message Block Version 1 (SMB v1) in Azure

Microsoft has always considered security to be priority #1. Whether it be in the cloud, on-premises, or across hybrid deployments, security is part of our DNA and we do whatever we can to help protect our customers and our platform. This is especially true when it comes to the Azure public cloud, where Microsoft has…


Microsoft Encryption of Data-at-Rest White Paper

There are essentially 3 types of encryption you want to think about when working with a cloud service provider: Encryption at Rest Encryption in Flight (network encryption) Encryption in processing (application data encryption) Encryption at rest is about protecting data on disk. You need to make sure that an attacker who might to acquire a…


Azure Logging and Auditing–Turn Chaos into Order

Azure is a big thing – so big that a lot of you tell me it’s hard to keep up. But you’re also IT pro’s, you’re used to learning new things – IT definitely isn’t the profession you chose to not learn new things. Indeed – this is the life we’ve chosen. And that’s a…


New Azure Security Whitepapers–A Security Bonanza!

They’ve been a long time coming – the Azure Security White Paper collection. This isn’t just a white paper or two. This isn’t marketing stuff and fluff. This isn’t just click-this and click-that. This is the real deal – information you can use to understand what Azure has to offer when it comes to security….


Azure TLS Certificate Changes

We know security is a top priority for you, and so is uptime of your applications. To give you additional assurance of the authenticity of Azure services, most Azure services get their SSL/TLS certificates from a known set of intermediate certificate authorities (CAs) that Microsoft operates. Microsoft publishes details of these CAs in its Certificate…


Azure Security Center Dashboard Updated

Good news on the Azure Security Center front! We’ve refreshed the dashboard to make it easier for you to: Identify new issues with your Azure Virtual Machines and PaaS services Find those issues easily using the New alerts & incidents tile Get to work fast with the ROI on investigations by using the Most attacked…


Update to Azure Antimalware Extension for Cloud Services

Microsoft Azure has released the latest version (1.1.0.1) of the Azure Antimalware extension for Cloud Services (PaaS v1). This release includes support for Guest Agent Family 5+ and has Windows Server 2016 Operating System enabled with Defender by default. The new extension will only configure the policies in your Azure PaaS v1 nodes, as Defender…


NEW: Azure Platform as a Service (PaaS) Security Best Practices

Things have been super busy around here, and one of the victims of that flurry of activity is the blog. Let’s try to make it up to you by giving your some great news – we’ve published some new PaaS security best practices articles! Here’s what we have to far: Securing PaaS deployments Securing PaaS…