Customers of Microsoft Azure can now add an extra layer of security to their cloud services and virtual machines (VMs) at no extra cost by using Microsoft Antimalware, the company announced on Monday.
The preview version of Microsoft Antimalware for Azure was released back in May at TechEd North America. The general availability of Microsoft Antimalware for Azure Cloud Services and Virtual Machines was announced last week at TechEd Europe.
“This new security extension for Microsoft Azure provides an additional layer of security by helping to identify, block and remove malicious software on virtual machines managed by Azure customers. It provides real time protection from the latest threats, can perform on-demand scanning, and monitoring at no additional charge to Microsoft Azure customers,” Tim Rains, director of cybersecurity and cloud strategy at Microsoft, said in a blog post on Monday.
Microsoft Antimalware for Azure Cloud Services and Virtual Machines is a single-agent solution that’s designed to run in the background without human intervention. It is built on the same platform as Windows Defender, Forefront Endpoint Protection, Security Essentials, Windows Intune and System Center Endpoint Protection.
The solution includes Microsoft Antimalware Client and Service, Antimalware Service Management Extension, Antimalware PowerShell cmdlets and Azure Diagnostics Extensions. The product is supported on Windows Server 2008 R2, Windows Server 2012, and Windows Server 2012 R2. Support for Windows Server Technical Preview will be added in the future, Microsoft said.
The Microsoft Antimalware Client and Service is installed by default in all supported Azure operating systems, but it’s disabled. As for virtual machines, users can install the security extension when creating a new virtual machine.
The list of features in Microsoft Antimalware for Azure includes real-time protection against malware, scheduled scans, malware remediation, and automatic updates for malware definitions, the antimalware engine and platform.
The solution also provides information on detected threats and suspicious resources to ensure rapid response, samples reporting for troubleshooting purposes and to help refine the service, and logging directly into the Azure Storage account. If needed, administrators can configure certain files, processes and drives to be excluded.
Microsoft has published a whitepaper detailing the new security extension.

Eduard Kovacs (@EduardKovacs) is a contributing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.
More from Eduard Kovacs
- British Retailer JD Sports Discloses Data Breach Affecting 10 Million Customers
- Meta Awards $27,000 Bounty for 2FA Bypass Vulnerability
- Industry Reactions to Hive Ransomware Takedown: Feedback Friday
- US Reiterates $10 Million Reward Offer After Disruption of Hive Ransomware
- Hive Ransomware Operation Shut Down by Law Enforcement
- UK Gov Warns of Phishing Attacks Launched by Iranian, Russian Cyberspies
- Dozens of Cybersecurity Companies Announced Layoffs in Past Year
- Security Update for Chrome 109 Patches 6 Vulnerabilities
Latest News
- Russian Millionaire on Trial in Hack, Insider Trade Scheme
- British Retailer JD Sports Discloses Data Breach Affecting 10 Million Customers
- Vulnerabilities in OpenEMR Healthcare Software Expose Patient Data
- Russia-Linked APT29 Uses New Malware in Embassy Attacks
- Meta Awards $27,000 Bounty for 2FA Bypass Vulnerability
- The Effect of Cybersecurity Layoffs on Cybersecurity Recruitment
- Critical Vulnerability Impacts Over 120 Lexmark Printers
- BIND Updates Patch High-Severity, Remotely Exploitable DoS Flaws
