Not a user yet?
Log in Register for free Suggest a product
Update

Agentless FIM enables organizations to monitor file and registry changes

Defender for CloudDefender for Cloud
Microsoft
Update from patrick-devicebaseUpdate from:
patrick-devicebase (expert)

June 2025

Optional index tags for storing malware scanning results (Preview)
June 25, 2025

Defender for Storage malware scanning introduces optional index tags for both on-upload and on-demand scans. With this new capability, users can choose whether to publish results to blob’s index tags when a blob is scanned (default) or to not use index tags. Index tags can be enabled or disabled at the subscription and storage account level through the Azure portal or via API.

API discovery and security posture for APIs hosted in Function Apps and Logic Apps (Preview)
June 25, 2025

Defender for Cloud now extends its API discovery and security posture capabilities to include APIs hosted in Azure Function Apps and Logic Apps, in addition to its existing support for APIs published in Azure API Management.

This enhancement empowers security teams with a comprehensive and continuously updated view of their organization’s API attack surface. Key capabilities include:

  • Centralized API Inventory: Automatically discover and catalog APIs across supported Azure services.
  • Security Risk Assessments: Identify and prioritize risks, including identification of dormant APIs that may warrant removal, as well as unencrypted APIs that could expose sensitive data.
    These capabilities are automatically available to all Defender for Cloud Security Posture Management (DCSPM) customers who have enabled the API Security Posture Management extension.

Rollout Timeline: The rollout of these updates will begin on June 25, 2025, and is expected to reach all supported regions within one week.

Agentless File Integrity Monitoring (Preview)
June 25, 2025
Agentless File Integrity Monitoring (FIM) is now available in preview. This capability complements the generally available (GA) FIM solution based on the Microsoft Defender for Endpoint agent, and introduces support for custom file and registry monitoring.

Agentless FIM enables organizations to monitor file and registry changes across their environment without deploying other agents. It provides a lightweight, scalable alternative while maintaining compatibility with the existing agent-based solution.
Key capabilities include:

  • Custom monitoring: Meet specific compliance and security requirements by defining and monitoring custom file paths and registry keys.
  • Unified experience: Events from both agentless and MDE-based FIM are stored in the same workspace table, with clear source indicators.
Version: June 2025 Link
More updatesTo the product
Receive Important Update Messages Stay tuned for upcoming Microsoft Defender for Cloud updates

More from the Apps & Software section

Was the content helpful to you?

Advertisement Advertise here?
Banner Logitech