Update to Azure Antimalware Extension for Cloud Services

Microsoft Azure has released the latest version (1.1.0.1) of the Azure Antimalware extension for Cloud Services (PaaS v1). This release includes support for Guest Agent Family 5+ and has Windows Server 2016 Operating System enabled with Defender by default. The new extension will only configure the policies in your Azure PaaS v1 nodes, as Defender…


NEW: Azure Platform as a Service (PaaS) Security Best Practices

Things have been super busy around here, and one of the victims of that flurry of activity is the blog. Let’s try to make it up to you by giving your some great news – we’ve published some new PaaS security best practices articles! Here’s what we have to far: Securing PaaS deployments Securing PaaS…


Microsoft Security Intelligence Report features Azure Security Center Advanced Threat Detection

The Microsoft Security Intelligence Report (SIR) focuses on software vulnerabilities, software vulnerability exploits, malware, and unwanted software. Current and past reports and related resources are available for download at www.microsoft.com/sir. We expect that you will find the data, insights, and guidance provided in this report useful in helping you protect your organizations, software, and users….


Use Key Encryption Keys to Backup Your Encrypted Azure Virtual Machines

Many of you have been asking us about the ability to encrypt virtual machines in Azure. It’s an important question, because many security teams and compliance team require that virtual machines be encrypted. The good news is that we have a great feature called Azure Disk Encryption that enables you to encrypt the virtual disk…


Get Threat Intelligence Reports with Azure Security Center

There’s a very cool feature in Azure Security Center that deserves more attention. Actually, there are a lot of such features – but the one I have my mind on today is the integrated Threat Intelligence Reports you get when you enable Azure Security Center on your Azure subscriptions. You might not have seen them…


Tom Shinder Discusses Cloud Security at CloudAdminCon 2016

I had a chance recently to speak with a group of cloud computing leaders recently at the CloudAdminCon 2016 conference. During this discussion, I provided trenchant answers to key cloud security issues, and touched on a number of key Azure security advantages during the discussion. Enjoy!


Boost Azure Security Center with Integrated Vulnerability Assessment

Azure Security Center provides you a single view of the security state of your Azure assets. That single view provides a lot of user information: security alerts, security recommendations, threat detections, security health management, and more. The main screen below give you a good idea of what I’m talking about.   The built-in features go…


10 Security Issues You Can Fix with Azure Security Center

When I first saw Azure Security Center over a year ago, I thought “meh, looks interesting but doesn’t seem to do too much”. True story. Since then, a lot of things have changed in Azure Security Center and my understanding of what it does and how it works – there’s no “meh” there anymore! When…