Ensure that Microsoft Defender External Attack Surface Monitoring (EASM) is enabled
Why This Matters
An organization's externally facing assets are a primary target for attackers. Without continuous monitoring of your public attack surface, you may miss critical vulnerabilities such as expired SSL certificates, open ports, or known CVEs that threat actors could exploit for reconnaissance or direct attacks. Enabling Microsoft Defender EASM provides proactive visibility and actionable insights to reduce your risk exposure.
What Aether365 Checks
Aether365 verifies whether a Microsoft Defender External Attack Surface Monitoring (EASM) workspace is configured for your Azure subscription. This check appears in the Aether365 dashboard under azure-subscription-security checks and flags subscriptions where EASM is not enabled.