In this post, I want to discuss how File Integrity Monitoring (FIM) can be implemented using Microsoft Defender for Cloud which is one of the requirements of PCI DSS.
Microsoft Defender Antivirus exclusion list can be bypassed if the user has the administrative right or the threat actor got administrative access to the device. Microsoft Defender exclusion list from scanning is unprotected and exposed to the end-user. There are two big risks: Risk1: Privileged users or bad actors can
Governance in Azure got ignored for small organizations or newly cloud-adopted organizations. We should not have to start big, we can start from small things that can be achieved easily. For example, you want to get notified if any resources like a virtual machine, storage account, network, etc. create or
Microsoft has changed the Defender family name in Ignite 2021. New Names Old Names
Azure NAT Gateway, gives more control over the outbound traffic from the virtual network. It will allow you to have static outbound public IP for PaaS services. There could be many use cases of this service but here I am interested in controlling Azure Web App outbound traffic. The issue