Category: Microsoft Defender for Cloud
-
Generate Alerts Samples for Containers plan
Read more: Generate Alerts Samples for Containers planHi! You can now create sample alerts also for Defender for Containers plan. The new sample alerts are presented as being from AKS, Arc-connected clusters, EKS, and GKE resources with…
-
Deprecated VM alerts regarding suspicious activity related to a Kubernetes cluster
Read more: Deprecated VM alerts regarding suspicious activity related to a Kubernetes clusterHi! The following table lists the alerts that were deprecated: Alert name Description Tactics Severity Docker build operation detected on a Kubernetes node(VM_ImageBuildOnNode) Machine logs indicate a build operation of…
-
Two news alerts for Microsoft Defender for KeyVault (AKV)
Read more: Two news alerts for Microsoft Defender for KeyVault (AKV)Hi! In this article, I will share with you two news alerts released in June 2022 for Microsoft Defender for KeyVault. Alert (alert type) Description MITRE tactics Severity Unusual access…
-
Microsoft Defender for Azure Cosmos DB
Read more: Microsoft Defender for Azure Cosmos DBHi! Microsoft Defender for Azure Cosmos DB is now generally available (GA) and supports SQL (core) API account types. This new release to GA is a part of the Microsoft…
-
Filter security alerts by IP address
Read more: Filter security alerts by IP addressHi! In this article, I will show how you can filter the Microsoft Defender for Cloud security alerts by IP address. In many cases of attacks, you want to track…
-
Defender for Containers can now scan for vulnerabilities in Windows images
Read more: Defender for Containers can now scan for vulnerabilities in Windows imagesHi! Defender for Container’s image scan now supports Windows images that are hosted in Azure Container Registry. This feature is free while in preview, and will incur a cost when…