1,446 questions with Microsoft Defender for Cloud-related tags

Sort by: Updated
Updated Created Answers
0 answers

Error message when try to get my secure score

Every time I try to get my secure score the following message appears. I could previously access it and now I can only see the score on the dashboard (which has dropped significantly) from the previous score.

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,446 questions
asked 2024-12-18T03:34:03.46+00:00
Aaron Lake 0 Reputation points
commented 2024-12-21T02:09:33.3033333+00:00
Aaron Lake 0 Reputation points
1 answer

Security compliance for azure resources

Hi My customer wants me to check security breaches in his Azure tenant. He has one subscription and many resource groups. Many resources are inside the resource group. How to start and what things should I check? For example; if I will start with…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,446 questions
asked 2024-12-18T01:01:13.4566667+00:00
HASSAN BIN NASIR DAR 311 Reputation points
commented 2024-12-20T23:51:50.87+00:00
Navya 13,875 Reputation points Microsoft Vendor
0 answers

Microsoft Defender Email Collaboration

I want to customize quaratine notification. When user recieve malicous mail ( for example it will be phishing link , malicous attachment, spam mail and etc) , it will go quarantine due policies. Quarantine also sends notification to user, as quarantine…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,446 questions
Microsoft Defender for Identity
Microsoft Defender for Identity
A Microsoft service that helps protect enterprise hybrid environments from multiple types of advanced, targeted cyberattacks and insider threats.
229 questions
asked 2024-12-20T10:46:32.79+00:00
Kanan Ganiyev 0 Reputation points
commented 2024-12-20T23:44:57.28+00:00
James Hamil 26,386 Reputation points Microsoft Employee
0 answers

AxiosError: Request failed with status code 400

Hi, When we are trying to raise our secure score we encountered this problem: Something went wrong We have encountered an error loading this page, please try again later: AxiosError: Request failed with status code 400 Can someone explain why its having…

Windows Server Security
Windows Server Security
Windows Server: A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
1,874 questions
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,446 questions
Microsoft Defender for Identity
Microsoft Defender for Identity
A Microsoft service that helps protect enterprise hybrid environments from multiple types of advanced, targeted cyberattacks and insider threats.
229 questions
Microsoft Defender for Cloud Apps
Microsoft Defender for Cloud Apps
A Microsoft cloud access security broker that enables customers to control the access and use of software as a service apps in their organization.
158 questions
Microsoft Defender for Endpoint Training
Microsoft Defender for Endpoint Training
Microsoft Defender for Endpoint: A Microsoft unified security platform for preventative protection, postbreach detection, and automated investigation and response. Previously known as Microsoft Defender Advanced Threat Protection.Training: Instruction to develop new skills.
17 questions
asked 2024-12-16T22:13:47.3766667+00:00
Lyle 50 Reputation points
commented 2024-12-20T16:56:06.93+00:00
Denis Lapko 0 Reputation points
1 answer

Defender for Storage plan where it store the logs

When we are enabling Defender for Storage plan or other plan -where its store the logs. we can check the alerts, but to get the alert, defender must be checking some logs, so that logs where it store ? and how to check it ?

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,446 questions
asked 2024-12-18T05:37:42.1533333+00:00
Naresh Badgujar 0 Reputation points
edited a comment 2024-12-20T15:19:41.76+00:00
Andrew Blumhardt 9,866 Reputation points Microsoft Employee
3 answers

Microsoft Defender For Cloud Not Giving Any Security Alert?

I have enabled MicroSoft Defender for Cloud for my Ubuntu Servers and Azure Mysql Server. I have enabled it a week ago, but it didn't send any security alert. I am wondering if there is any other configuration that i need to do before receiving any…

Azure Virtual Machines
Azure Virtual Machines
An Azure service that is used to provision Windows and Linux virtual machines.
8,167 questions
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,446 questions
asked 2024-12-16T09:30:30.8866667+00:00
Rehan Ch 0 Reputation points
edited an answer 2024-12-20T13:05:21.7366667+00:00
alta94 2,191 Reputation points
1 answer

OpenSSL vulnerabilities in Defender for latest version Microsoft Products

My org has several OpenSSL vulnerabilities for OneDrive and Azure Disk Encryption. The CVEs are CVE-2024-4603, CVE-2024-4741, CVE-2024-5535, and Defender was said to fix inaccuracies with these last month (Sept. 2024).…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,446 questions
asked 2024-10-15T20:07:36.4466667+00:00
Zach Hyman 100 Reputation points
commented 2024-12-20T11:08:19.1666667+00:00
Ronald Dolfsma 0 Reputation points
0 answers

Microsoft XDR (Defender) - DeviceEvents - ShellLinkCreateFileEvent

Hi everyone, I've been trying to create a hunting query in the Defender portal to identify when a malicious .lnk file is created. I noticed that an interesting event to detect and analyze this is "DeviceEvents --> ShellLinkCreateFileEvent",…

Windows 10 Security
Windows 10 Security
Windows 10: A Microsoft operating system that runs on personal computers and tablets.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
2,961 questions
Windows Server Security
Windows Server Security
Windows Server: A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
1,874 questions
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,446 questions
asked 2024-12-19T18:02:05.2466667+00:00
viri4to 10 Reputation points
edited the question 2024-12-19T18:30:43.18+00:00
VarunTha 9,980 Reputation points Microsoft Vendor
1 answer

Is it possible to automatically email reports for incomplete Attack Simulator training?

Hey everyone, I’m currently managing security training for my organization and using the Attack Simulator feature in Microsoft 365. I was wondering: Is there a way to automate reports for users who haven’t completed their assigned training and have those…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,446 questions
asked 2024-12-11T14:43:26.54+00:00
Daniel Ideho 0 Reputation points
commented 2024-12-19T18:16:30.9233333+00:00
Raja Pothuraju 9,805 Reputation points Microsoft Vendor
1 answer

Simulation phishing Training - Defender Menu

Hi, We are trying to explore the attack simulation, when a user is compromised and they are enrolled for training, it is noticed that the MS defender Menu (Home, Threat Intelligence - Trials, Exposure Management - Data Connectors, Email Collaboration -…

Microsoft 365
Microsoft 365
Formerly Office 365, is a line of subscription services offered by Microsoft which adds to and includes the Microsoft Office product line.
5,365 questions
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,446 questions
asked 2024-12-05T15:47:09.4+00:00
RM_77 0 Reputation points
commented 2024-12-19T18:07:16.1+00:00
Raja Pothuraju 9,805 Reputation points Microsoft Vendor
1 answer

OpenSSL Vulnerability Shown on Microsoft Defender for Cloud Dashboard - OneDrive affected app

An OpenSSL vulnerability has been flagged on one of our devices by Microsoft Defender for Cloud. The vulnerability has listed two dll files as the main culprits (both installed via OneDrive): libcrypto-3-x64.dll libssl-3-x64.dll The OneDrive version…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,446 questions
asked 2024-10-31T12:38:50.5166667+00:00
Eric Wasike 50 Reputation points
commented 2024-12-19T17:45:49.0266667+00:00
Zachery Paul Gardner 0 Reputation points
0 answers

Use quarantine notifications

How can I customize the quarantine email template in Microsoft 365 Defender to translate the email body into Azerbaijani without using PowerShell? I want to ensure the subject line, body text, and all relevant sections are user-friendly for…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,446 questions
asked 2024-12-19T12:27:39.42+00:00
Tofig Kishiyev 0 Reputation points
0 answers

how to export scan data and xml report of an asset that has been detected for being vulnerable by MS Defender xdr

Hello ☺️ I am trying to figure out how to generate scan data and XML report of an asset that has been detected for vulnerability for a specific CVE on defender XDR. I am trying to provide this information to the Rapid7 team as the vulnerability report…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,446 questions
Microsoft Defender for Identity
Microsoft Defender for Identity
A Microsoft service that helps protect enterprise hybrid environments from multiple types of advanced, targeted cyberattacks and insider threats.
229 questions
Microsoft Defender for Cloud Apps
Microsoft Defender for Cloud Apps
A Microsoft cloud access security broker that enables customers to control the access and use of software as a service apps in their organization.
158 questions
asked 2024-12-12T12:45:53.3766667+00:00
Saborni Barua 0 Reputation points
edited the question 2024-12-18T06:31:47.4266667+00:00
RNareddy 1,430 Reputation points Microsoft Vendor
0 answers

Defender for Storage scan single blob...

Hi, We've enabled Defender for Storage Accounts on an account which receives blobs from third-parties. If the blob is marked as safe - we continue onward processing. We're in a scenario where not all uploaded blobs are marked as safe/unsafe by Defender.…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,446 questions
asked 2024-12-13T14:19:46.41+00:00
Matt 0 Reputation points
commented 2024-12-17T05:53:24.65+00:00
Givary-MSFT 34,521 Reputation points Microsoft Employee
0 answers

Problems with Microsoft Defender for Cloud identity recommendations V2

The new set of identity related recommendations when GA on 2023-05-01: https://github.com/MicrosoftDocs/azure-docs/commit/aba0c46fdabe84065951c96a7df75333a0493cac#diff-dbd404e58cedaa40736d88385d006caf82189af9cac95af849538aab5c5b57d8L70-L78 As a result…

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
939 questions
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,446 questions
asked 2023-05-22T19:55:57+00:00
Janne Kujanpää 256 Reputation points
commented 2024-12-16T18:50:13.84+00:00
neok-g 0 Reputation points
2 answers

Does MS Defender provides security features (like vulnerability scanning and Intrusion prevention etc) can be configure for Azure Cloud service (extended support) CS-ES.

Defender documentation shows The vulenerability scan is limited to VM as supported destinations only. Also the Defender inventory list does not shows any CS-ES instances protected by it.

Azure Cloud Services
Azure Cloud Services
An Azure platform as a service offer that is used to deploy web and cloud applications.
705 questions
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,446 questions
asked 2024-12-13T13:37:57.6933333+00:00
Gaurav Sharma 0 Reputation points
commented 2024-12-16T06:19:22.2633333+00:00
Prrudram-MSFT 27,171 Reputation points
1 answer

i want to control and limited the Microsoft Defender action inroder to reduce costs

i have significant costs on Microsoft Defender for Cloud- I would like to reduce that . I want to know how can I reduce my costs , how to limit the Microsoft Defender for Cloud. when i checked the settings of defnder plans i have seen that there shold be…

Azure Cost Management
Azure Cost Management
A Microsoft offering that enables tracking of cloud usage and expenditures for Azure and other cloud providers.
2,826 questions
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,446 questions
asked 2024-12-15T18:33:46.4466667+00:00
Amir Shiloh 0 Reputation points
answered 2024-12-16T00:51:13.5366667+00:00
akinbade abiola 21,040 Reputation points
2 answers

Restrict turning Off Azure Defender

Hi I would like to know if i can add a policy or somehow block turning off Azure Defender for Storage , Key vault etc.

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,446 questions
asked 2021-08-23T10:22:54.97+00:00
Mohammed Siyam (DevOn) 1 Reputation point
commented 2024-12-13T11:49:19.46+00:00
Gautham Suvarna 0 Reputation points
1 answer

SOC2 reports

Is there a method to interface with Microsoft about their SOC2 reports located here: https://servicetrust.microsoft.com/? Vendor risk management would like to know more about specific control exceptions.

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,446 questions
asked 2024-12-02T20:27:48.6666667+00:00
Ryne-2047 0 Reputation points
commented 2024-12-11T23:09:11.4166667+00:00
James Hamil 26,386 Reputation points Microsoft Employee
1 answer

Duplicate SecurityEvent logging after migrating from MMA to AMA

Greetings, I added a few extra tags to this as we are not quite sure of why we cannot Disconnect or Delete the Security Events Via the Legacy Agent Connector from our Sentinel environment. All Azure VMs have been migrated from the MMA (Legacy) agent to…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,446 questions
Microsoft Sentinel
Microsoft Sentinel
A scalable, cloud-native solution for security information event management and security orchestration automated response. Previously known as Azure Sentinel.
1,196 questions
Microsoft Defender for Identity
Microsoft Defender for Identity
A Microsoft service that helps protect enterprise hybrid environments from multiple types of advanced, targeted cyberattacks and insider threats.
229 questions
asked 2024-12-06T20:24:41.8566667+00:00
mpls 80 Reputation points
commented 2024-12-11T14:29:11.2466667+00:00
mpls 80 Reputation points