Update: Microsoft will be moving away from UserVoice sites on a product-by-product basis throughout the 2021 calendar year. We will leverage 1st party solutions for customer feedback. Learn more here.

How can we improve Azure Storage?

← Storage

Azure Antimalware should be able to scan blob storage

Azure Antimalware should be able to scan blob storage. Currently you have to save the file a a file system for the real time protection to be able to scan it. Once it has been scanned then you would have to move it to the blob storage. Would like to be able to write directly to blob storage and have the real time protection monitoring the files.

347 votes
Vote

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close
You have left! (?) (thinking…)
Derrick Sharpe shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

18 comments

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close
Submitting...
An error occurred while saving the comment
  • Jarno Leikas commented  ·   ·  Flag as inappropriate

    While checking logs for suspicious file hashes is better than nothing, but it's not exactly malware scanning per se. This would be an excellent addition, as there are no good alternatives (other than developing a custom service for this). The custom service seems to be limited to a custom ClamAV wrapper, if we want to stay in the PaaS land.

  • Layton Clay commented  ·   ·  Flag as inappropriate

    This is a real issue, as our security staff is against allowing large files into our Azure Govt Cloudspace with no scanning. We are having to devise a service in response to their restriction, but it should be part of the Azure service.

    Based on Hasan's comment we will check to see if the new capability answers the mail, but at first glance it seems a half-measure.

  • Hasan Abo-Shally commented  ·   ·  Flag as inappropriate

    Update: Threat Protection for Azure Storage includes Malware Reputation Screening

    Threat protection for Azure Storage offers new detections powered by Microsoft Threat Intelligence for detecting malware uploads to Azure Storage using hash reputation analysis and suspicious access from an active Tor exit node (an anonymizing proxy). You can now view detected malware across storage accounts using Azure Security Center.

    https://azure.microsoft.com/en-us/updates/threat-protection-for-azure-storage-includes-malware-reputation-screening/

  • Sheikh Osama commented  ·   ·  Flag as inappropriate

    Hi Corey,

    Its been approxmately 4 years , and we havent heard of any simlar feature in azure malare or any native feature in storage account /blob as well. could you please if its under consideration or not in future roadmap

  • Thomas Gossler commented  ·   ·  Flag as inappropriate

    Someone should at least provide an ARM template or installation for a solution similar to the one outlined here: https://stackoverflow.com/questions/28862992/can-a-worker-role-process-call-antimalware-for-azure-cloud-services-programmatic., e.g. setup VM Scale Set with Antimalware enabled, provides API to send files into VM for scanning, receive webhook with notification about result and receive the clean file back for storing it in BLOB storage.

  • Anonymous commented  ·   ·  Flag as inappropriate

    We need to have this feature turned on at the earliest to block potential vulnerabilities. It will be great if we can extend this feature to all storage types/payloads

  • Dave Bird commented  ·   ·  Flag as inappropriate

    Is there any update on this. i have a requirement to scan 4TB of blob storage and i need to find a convinent way to scan those files.

  • Anonymous commented  ·   ·  Flag as inappropriate

    Hi, just wondering if there has been any progress on the ability to scan files as they are added to blob storage?

  • Jim Mackin commented  ·   ·  Flag as inappropriate

    Has anything like this been implemented? I am very interested in real time scanning of files before dropping them in a blob store.

    Thanks!

  • Martin Valland commented  ·   ·  Flag as inappropriate

    Any progress on this? Scanning blob storage seems like a very usefull feature when receiving documents uploaded by users

Storage: Blobs

Categories

Feedback and Knowledge Base

(thinking…)
Hosted by UserVoice