News

Microsoft Releases Azure Security Solution with VM Scanning

Microsoft recently announced the general availability of a new single-agent, anti-malware solution for various Azure services, including Virtual Machines.

Microsoft described the solution, which protects Microsoft's cloud-based services from viruses and malware, in a blog post last Thursday. There's also a white paper (PDF) available that describes configuration and installation details.

The release coincides with several other Microsoft cloud announcements from the recent Microsoft TechEd Europe event. The service, called "Microsoft Antimalware for Azure Cloud Services and Virtual Machines," is based on Microsoft Security Essentials, System Center Endpoint Protection and Forefront Endpoint Protection, among other technologies. It can be set up though the Azure Preview Portal, Visual Studio or via PowerShell commands.

Microsoft promises that the service offers "real-time protection" against malware, including automatic deletion and quarantine of suspected files. It's also possible for IT pros to set exclusion paths to certain files that organizations don't want scanned. The service automatically updates its platform, anti-malware engine and virus definitions.

The service comes at no cost to organizations with active Azure accounts. It optionally allows IT pros to collect event information regarding the anti-malware service's activities, which can be aggregated for later analysis using Azure Diagnostics. Using this anti-malware event collection process requires having an Azure Storage account, which likely would entail an added cost, but it's an optional feature to use. The data even can be sent for further analysis to Microsoft's HDInsight "Big Data" service or to an event management system.

Microsoft Antimalware for Azure Cloud Services and Virtual Machines has some software requirements. It currently is supported on "Windows Server 2008 R2, Windows Server 2012, and Windows Server 2012 R2," according to Microsoft's announcement. It's not supported on Windows Server 2008, or on the Windows Server technical preview beta, although Microsoft does plan to support it with its next Windows Server release.

Microsoft does not turn on the service automatically. IT pros have to enable it through configuration settings. The bits are there by default to be enabled for Azure services, but IT pros have to install the bits for the Microsoft Antimalware Client and Service to use the service on Azure Virtual Machines.

Microsoft offers a default configuration of the service that's optimized for its Azure cloud. It's also possible for IT pros to customize the configuration for Azure services or for Azure Virtual Machines.

About the Author

Kurt Mackie is senior news producer for 1105 Media's Converge360 group.

Featured

  • Windows 365 Cloud Apps Now Available for Public Preview

    Microsoft announced this week that Windows 365 Cloud Apps are now available for public preview. This aims to allow IT administrators to stream individual Windows applications from the cloud, removing the need to assign Cloud PCs to every user.

  • Report: Security Initiatives Can't Keep Pace with Cloud, AI Boom

    The increasingly fast adoption of hybrid, multicloud, and AI systems is easily outgrowing existing security measures, according to a recent global survey by the Cloud Security Alliance (CSA) and exposure management firm Tenable.

  • World Map Image

    Microsoft Taps Nebius in $17B AI Infrastructure Deal To Alleviate Cloud Strain

    Microsoft has signed a five-year, $17.4 billion agreement with Amsterdam-based Nebius Group to expand its AI computing capabilities through third-party GPU infrastructure.

  • Microsoft Brings Copilot AI Into Viva Engage

    Microsoft 365 Copilot in Viva Engage is now generally available, extending Copilot's AI-powered assistant capabilities deeper into the Viva platform.

Most   Popular