Microsoft Defender
Lessons from the field. Always landing on my feet.
All
Cloud Security
Identity Security
AI Security
Microsoft Sentinel
Detection Engineering
DevSecOps
Threat Detection
Zero Trust
Agentic AI
Container Security
Infrastructure as Code
Microsoft Defender
Microsoft Entra
2 posts
Scan Every Blob, Trace Every Read: Defender for Storage + Sentinel
Storage is where malware waits. A blob uploaded to ingest/ by a pipeline step, a partnerβs SFTP connector, or a misconfigured Logic App sits quietly until something downstream opens it β a Data Factory copy, a Function app, a Synapse notebook, a β¦
AKS Runtime Security: Binary Drift, Anti-Malware & Gated Deployment with Defender for Cloud
In December, I published a post on securing the container supply chain β SBOM generation, image signing, and build provenance with GitHub Actions. That covered build-time security: making sure the image you ship is the image you built. But what β¦