Ensure that 'Secure transfer required' is set to 'Enabled'
Why This Matters
Enabling Secure transfer required forces all client connections to your storage account to use encryption, such as HTTPS or SMB 3.0 with encryption. Without this setting, attackers could intercept data in transit over unencrypted HTTP connections or SMB 2.1 sessions, exposing sensitive information. This control directly addresses the data in transit protection requirement under the Microsoft cloud security benchmark.
What Aether365 Checks
This check verifies that the Secure transfer required property is set to Enabled for each storage account in your Azure subscription. You can review results in the Aether365 dashboard under the azure-storage-accounts section.