Protect data from malware and attacks

Threat management includes protection from both malicious software and attacks against systems and networks. Microsoft cloud technology and services have built-in protection features to help defend your data against malware and other types of threats.

Microsoft Dynamics 365 and Microsoft Power Platform online services operated by 21Vianet help protect against malware threats in multiple ways. Microsoft Antimalware is built for the cloud, and additional antimalware protections are provided for specific services, including Microsoft Dynamics 365. Denial-of-service (DoS) attacks can deny access to important resources and result in lost productivity, so 21Vianet builds its services to defend against such attacks. Windows server and client operating systems include multiple technologies for protecting against these threats at the local level.

Secure identity

Threat management technologies help protect systems against malware, in both cloud and on-premises environments. Malware is a leading cause of identity compromise. It can run in the background and collect information, such as user names and passwords, and transmit them back to the attacker. With stolen credentials, an attacker can access, modify, or destroy your valuable data. If the compromised account has administrative privileges, the attacker can change system or account settings and do much more damage. Thus, an important element in keeping user identities secure is protecting them from the effects of malicious software.

Secure infrastructure and technologies

21Vianet and Microsoft use many security technologies and practices to protect the cloud infrastructure and on-premises networks against modern, sophisticated threats:

• Antimalware components and services for cloud services, virtual machines (VMs), and Windows clients and servers help identify and remove viruses, spyware, and other malicious software. Antimalware also provides real-time protection, on-demand scanning, basic configuration management, and monitoring. Microsoft Antimalware for Azure cloud services and virtual machines is built on the same antimalware platform as other Microsoft malware protection products, and provides a single-agent solution for applications and tenant environments.
• Denial-of-service defenses protect against attacks that are designed to use multiple machines to flood the resources of a targeted network or server, typically using a botnet to send an overload of packets intended to interrupt services. Defending against DoS attacks requires tools that can analyze network traffic to detect illegitimate traffic and respond to attacks by blocking illegitimate traffic.
• Advanced Threat Analytics is technology that monitors normal usage patterns for networks, systems, and users, and employs machine learning to flag any behavior that is out of the ordinary. Advanced Threat Analytics uses information derived from networked devices and heuristics to detect suspicious activity that may indicate a threat; it then sends real-time alerts so that you can mount a response to protect your assets.

Microsoft threat management technologies were developed based on our experience addressing emerging threats in the public cloud, private cloud, and datacenter environments, and are driven by the “assume breach” approach.

Secure apps and data

Microsoft Dynamics 365 operated by 21Vianet

Microsoft Dynamics 365 operated by 21Vianet is implemented on Azure, and leverages Azure security technologies outlined above. Microsoft Dynamics 365 and Microsoft Power Platform online services operated by 21Vianet fully participates in the Azure processes for intrusion detection and detection of antimalware.

Microsoft Azure operated by 21Vianet

To protect against online threats, Microsoft Azure operated by 21Vianet utilizes and offers Microsoft Antimalware for cloud services and virtual machines, and uses detection and mitigation techniques to protect against DDoS attacks.

Microsoft Antimalware for Azure with real-time protection and remediation. Microsoft Antimalware is a real-time protection capability that helps identity and remove viruses, spyware, and other malicious software. You can configure alerts for when known malicious or unwanted software attempts to install itself or run on your Azure systems. Antimalware automatically takes action, such as deleting or quarantining malicious files and cleaning up malicious registry entries.

Intrusion detection and DDoS. Intrusion detection and prevention systems, denial of service attack prevention, regular penetration testing, and forensic tools help identify and mitigate threats from both outside and inside of Azure.

• Distributed denial-of-service (DDoS) defenses. To protect the cloud services, Azure provides a distributed denial-of-service (DDoS) defense system that is part of the continuous monitoring and penetration-testing processes of Azure. Azure's DDoS defense system is designed not only to withstand attacks from the outside, but also from other Azure tenants. Azure uses standard detection and mitigation techniques such as SYN cookies, rate limiting, and connection limits to protect against these attacks.

Learn more about Defending Against DDoS Attacks in Cloud Computing

Threat management partners. In addition to the robust security benefits built into Azure, 21Vianet offers a rich array of third-party security products for Azure that are built to meet your unique security needs.

Find the right threat management partner in the Azure Marketplace