TL;DR
Microsoft Defender for Cloud enhances Kubernetes security with new features, updates container vulnerability re-scan policies, and expands support for Jfrog Artifactory and Docker Hub.
Key Points
Highlight key points with color coding based on sentiment (positive, neutral, negative).Microsoft Defender for Cloud has introduced a new "Restrict Pod Access" response action in preview, aimed at enhancing Kubernetes security by blocking sensitive interfaces within pods to prevent lateral movement and privilege escalation.
The container image vulnerability re-scan policy has been updated to a 30-day cycle, ensuring more frequent vulnerability assessments for images that are actively used, compared to the previous 90-day cycle.
Jfrog Artifactory and Docker Hub container registries are now supported by Microsoft Defender for Containers, allowing for vulnerability scanning of container images stored in these external registries.
A range of new compliance frameworks are now generally available in Microsoft Defender for Cloud, including standards like the AWS Well-Architected Framework 2024 and the EU General Data Protection Regulation (GDPR) 2016/679, enhancing security and compliance across various cloud platforms.
Billing for the support of Jfrog Artifactory and container registries in Defender for Containers will commence on December 2, 2025.
In November 2025, Microsoft Defender for Cloud introduced a series of updates, all aimed at tightening security and compliance across cloud platforms. One of the more notable features is the preview of the Restrict Pod Access response action. This tool is all about strengthening Kubernetes security by blocking sensitive interfaces within pods. The idea is to stop lateral movement and privilege escalation - those pesky issues that often plague containerized environments.
That's not all. MS has also adjusted its container image vulnerability re-scan policy. Now, if an image is actively used, it'll be checked every 30 days. This more frequent scanning is meant to catch vulnerabilities before they become a problem. Plus, Microsoft Defender for Containers is now compatible with Jfrog Artifactory and Docker Hub. So, scanning container images stored in these external registries is now generally available, with billing starting on December 2, 2025.
On the compliance side, several frameworks have hit general availability. We're talking about standards like APRA CPS 234, the Australian Government ISM PROTECTED, and the Brazil General Data Protection Law, to name a few. These frameworks are ready to roll across platforms like Azure, AWS, and GCP. All in all, these updates are part of Microsoft's ongoing mission to strengthen cloud security and compliance for organizations using Microsoft Defender for Cloud.
Key Numbers
Present key numerics and statistics in a minimalist format.The previous cycle for container image vulnerability re-scan policy.
The updated cycle for container image vulnerability re-scan policy.
Stakeholder Relationships
An interactive diagram mapping entities directly or indirectly involved in this news. Drag nodes to rearrange them and see relationship details.Organizations
Key entities and stakeholders, categorized for clarity: people, organizations, tools, events, regulatory bodies, and industries.Developed and released the latest updates to Microsoft Defender for Cloud.
Provides the Artifactory Cloud service now supported by Microsoft Defender for Containers for vulnerability scanning.
Offers Docker Hub, which is now supported by Microsoft Defender for Containers for enhanced security scanning.
Tools
Key entities and stakeholders, categorized for clarity: people, organizations, tools, events, regulatory bodies, and industries.Enhanced with new features and support for external container registries in the November 2025 update.
Now supported by Microsoft Defender for Containers for vulnerability scanning of container images.
Supported by Microsoft Defender for Containers for vulnerability scanning of container images.
Events
Key entities and stakeholders, categorized for clarity: people, organizations, tools, events, regulatory bodies, and industries.The release of new features and support in Microsoft Defender for Cloud.
Regulatory
Key entities and stakeholders, categorized for clarity: people, organizations, tools, events, regulatory bodies, and industries.Now generally available for Azure and AWS in Microsoft Defender for Cloud.
Included in the new compliance frameworks available in Microsoft Defender for Cloud.
Timeline of Events
Timeline of key events and milestones.Microsoft Defender for Containers and Defender CSPM announced general availability for Jfrog Artifactory and Docker Hub container registry support.
Microsoft Defender for Cloud enhanced security and compliance by making additional compliance frameworks generally available.
The re-scan cycle for container images was updated to a 30-day period for images pushed to or pulled from the registry within the last 30 days.
Microsoft Defender for Containers introduced a preview of the Restrict Pod Access response action to enhance Kubernetes security.
Billing for Jfrog Artifactory and container registry support by Defender for Containers and Defender CSPM is set to begin.
Additional Resources
Enjoyed it?
Get weekly updates delivered straight to your inbox, it only takes 3 seconds!Subscribe to our weekly newsletter Kaptain to receive similar updates for free!
Give a Pawfive to this post!
Share with your friends and followers
Start writing about what excites you in tech — connect with developers, grow your voice, and get rewarded.
Join other developers and claim your FAUN.dev() account now!
FAUN.dev()
FAUN.dev() is a developer-first platform built with a simple goal: help engineers stay sharp without wasting their time.
Kaptain #Kubernetes
FAUN.dev()
@kaptain
