Understand Microsoft Defender for DNS
Azure DNS is a hosting service for DNS domains that provides name resolution by using Microsoft Azure infrastructure. By hosting your domains in Azure, you can manage your DNS records by using the same credentials, APIs, tools, and billing as your other Azure services.
Microsoft Defender for DNS provides an extra layer of protection for your cloud resources by:
Continuously monitoring all DNS queries from your Azure resources
Running advanced security analytics to alert you about suspicious activity
What are the benefits of Microsoft Defender for DNS?
Defender for DNS protects against issues including:
Data exfiltration from your Azure resources using DNS tunneling
Malware communicating with C&C server
Communication with malicious domains as phishing and crypto mining
DNS attacks - communication with malicious DNS resolvers