Ensure That Microsoft Defender for Containers Is Set To 'On'
Why This Matters
Microsoft Defender for Containers provides essential threat detection for container registries and Kubernetes environments. Without this protection enabled, your container workloads are vulnerable to undetected attacks, malware, and suspicious behaviors that could compromise your entire container infrastructure. Enabling this service gives you access to threat intelligence and behavior analytics powered by the Microsoft Security Response Center (MSRC).
What Aether365 Checks
Aether365 verifies that Microsoft Defender for Containers is enabled on your Azure subscription as part of the CIS Microsoft Azure Foundations benchmark. This check appears on your Aether365 dashboard under the azure-defender-for-cloud section and flags subscriptions where the Container Registries plan is set to Off.