Ensure That Microsoft Defender for DNS Is Set To 'On'
Why This Matters
Microsoft Defender for DNS monitors all DNS queries leaving your Azure subscription, comparing them against threat intelligence feeds of known malicious domains. Without this protection, DNS exfiltration or command-and-control traffic from a compromised resource can go undetected, giving attackers a stealthy channel for data theft or ongoing exploitation.
What Aether365 Checks
This check verifies that the Microsoft Defender for DNS plan is enabled at the subscription level. In the Aether365 dashboard, it appears under the azure-defender-for-cloud category and alerts you if the plan is set to Off.