Merge pull request #2801 from MicrosoftDocs/main

Auto Publish – main to live - 2026-04-29 17:35 UTC

Author: learn-build-service-prod[bot]

articles/defender-for-cloud/agentless-malware-scanning.md

@@ -21,7 +21,7 @@ Agentless malware scanning for machines provides:
 - **Different scan types** - Agentless scanning can run quick and full scans.
 - **Integrated security alerts** - Malware security alerts are integrated into both Defender for Cloud and Defender XDR.
 
-Agentless malware scanning for machines in available in Defender for Servers Plan 2 with agentless scanning enabled. Scanning for malware is supported for Azure VMs, and AWS/GCP machines connected to Defender for Cloud.
+Agentless malware scanning for machines is available in Defender for Servers Plan 2 with agentless scanning enabled. Scanning for malware is supported for Azure VMs, and AWS/GCP machines connected to Defender for Cloud.
 
 ## Malware security alerts
 

articles/defender-for-cloud/ai-onboarding.md

@@ -37,7 +37,7 @@ Threat protection for AI services in Microsoft Defender for Cloud protects Micro
 
 ## Enable the components of the plan
 
-With the AI services threat protection plan enabled, you can control whether the different components of teh plan are enabled. This includes:
+With the AI services threat protection plan enabled, you can control whether the different components of the plan are enabled. This includes:
 
 - **[Suspicious prompt evidence](#enable-suspicious-prompt-evidence)**: receive alerts for suspicious portions of user prompts and model responses to help analyze AI-related security alerts, with sensitive data automatically redacted. These prompt snippets appear in the Defender portal as part of each alert’s evidence.
 
@@ -49,7 +49,7 @@ With the AI services threat protection plan enabled, you can control whether the
 
 With the AI services threat protection plan enabled, you can control whether alerts include suspicious segments directly from your user's prompts, or the model responses from your AI applications or agents. Enabling user prompt evidence helps you triage, classify alerts and your user's intentions.
 
-User prompt evidence consists of prompts and model responses. Both are considered your data. Evidence is available through the Azure portal, Defender portal, and any attached partners integrations.
+User prompt evidence consists of prompts and model responses. Both are considered your data. Evidence is available through the Azure portal, Defender portal, and any attached partner integrations.
 
 If User prompt evidence is disabled, Microsoft Defender for Cloud continues analyzing prompts and responses for threat detection, but the prompt content is masked in alerts.
 

articles/defender-for-cloud/concept-integration-365.md

@@ -40,7 +40,7 @@ The following table describes the detection and investigation experience in Micr
 | Area | Description |
 |--|--|
 | Incidents | All Defender for Cloud incidents are integrated to Microsoft Defender XDR. <br> - Searching for cloud resource assets in the [incident queue](/microsoft-365/security/defender/incident-queue) is supported. <br> - The [attack story](/microsoft-365/security/defender/investigate-incidents#attack-story) graph shows cloud resource. <br> - The [assets tab](/microsoft-365/security/defender/investigate-incidents#assets) in an incident page shows the cloud resource. <br> - Each virtual machine has its own entity page containing all related alerts and activity. <br> <br> There are no duplications of incidents from other Defender workloads. |
-| Alerts  | All Defender for Cloud alerts, including multicloud, internal and external providers' alerts, are integrated to Microsoft Defender XDR. Defenders for Cloud alerts show on the Microsoft Defender XDR [alert queue](/microsoft-365/security/defender-endpoint/alerts-queue-endpoint-detection-response). <br>Microsoft Defender XDR<br> The `cloud resource` asset shows up in the Asset tab of an alert. Resources are clearly identified as an Azure, Amazon, or a Google Cloud resource. <br> <br> Defender for Cloud alerts are automatically be associated with a tenant. <br> <br> There are no duplications of alerts from other Defender workloads.|
+| Alerts  | All Defender for Cloud alerts, including multicloud, internal and external providers' alerts, are integrated to Microsoft Defender XDR. Defender for Cloud alerts show on the Microsoft Defender XDR [alert queue](/microsoft-365/security/defender-endpoint/alerts-queue-endpoint-detection-response). <br>Microsoft Defender XDR<br> The `cloud resource` asset shows up in the Asset tab of an alert. Resources are clearly identified as an Azure, Amazon, or a Google Cloud resource. <br> <br> Defender for Cloud alerts are automatically associated with a tenant. <br> <br> There are no duplications of alerts from other Defender workloads.|
 | Alert and incident correlation | Alerts and incidents are automatically correlated, providing robust context to security operations teams to understand the complete attack story in their cloud environment. |
 | Threat detection | Accurate matching of virtual entities to device entities to ensure precision and effective threat detection. |
 | Unified API | Defender for Cloud alerts and incidents are now included in [Microsoft Defender XDR's public API](/microsoft-365/security/defender/api-overview), allowing customers to export their security alerts data into other systems using one API. |

articles/defender-for-cloud/create-governance-rule-servicenow.md

@@ -6,7 +6,7 @@ ms.author: elkrieger
 ms.topic: how-to
 ms.date: 10/13/2024
 ai-usage: ai-assisted
-#customer intent: As a user, I want to learn how to create automatic tickets using governance rules in Defender for Cloud that automatically assigns an owner to specific recommendation or a recommendation with a severity level in Defender for Cloud to my my ServiceNow account.
+#customer intent: As a user, I want to learn how to create automatic tickets using governance rules in Defender for Cloud that automatically assigns an owner to specific recommendation or a recommendation with a severity level in Defender for Cloud to my ServiceNow account.
 ---
 
 # Create automatic tickets with governance rules

articles/defender-for-cloud/defender-for-cloud-introduction.md

@@ -44,7 +44,7 @@ In addition to its core CNAPP capabilities, Defender for Cloud delivers [AI secu
 
 ## Cloud Native Application Protection Platform (CNAPP)
 
-:::image type="content" source="media/defender-for-cloud-introduction/defender-plans.png" alt-text="Conceptual image of CNAPP and how the Defenders for Cloud's plans protect all of your resources in their environments." lightbox="media/defender-for-cloud-introduction/defender-plans.png":::
+:::image type="content" source="media/defender-for-cloud-introduction/defender-plans.png" alt-text="Conceptual image of CNAPP and how the Defender for Cloud plans protect all of your resources in their environments." lightbox="media/defender-for-cloud-introduction/defender-plans.png":::
 
 After you enable the [Defender for Cloud solution](connect-azure-subscription.md) on your Azure subscription, the system collects security data from your multicloud and DevOps environments. Defender for Cloud uses the data to provide insights, recommendations, and actions that help you protect your cloud workloads and resources. You can increase your cloud workloads protection and coverage by enabling additional plans that are listed in the following section.
 
@@ -67,7 +67,7 @@ You can also check out the E-book ["From plan to deployment: Implementing a Clou
 
 ## Cloud security posture management (CSPM)
 
-The security of your cloud and on-premises resources depends on proper configuration and deployment. Defenders for Cloud recommendations help you secure your environment.
+The security of your cloud and on-premises resources depends on proper configuration and deployment. Defender for Cloud recommendations help you secure your environment.
 
 Defender for Cloud includes free Foundational CSPM capabilities. Enable advanced CSPM capabilities by using the Defender CSPM plan.
 

articles/defender-for-cloud/defender-for-cloud-planning-and-operations-guide.md

@@ -117,7 +117,7 @@ When planning access control using Azure Role-based access control for Defender
 
 A security policy defines the desired configuration of your workloads and helps ensure compliance with company or regulatory security requirements. In Defender for Cloud, you can define policies for your Azure subscriptions, which can be tailored to the type of workload or the sensitivity of data.
 
-Defenders for Cloud policies contain the following components:
+Defender for Cloud policies contain the following components:
 
 - [Data collection](monitoring-components.md): agent provisioning and data collection settings.
 

articles/defender-for-cloud/defender-for-containers-aws-remove.md

@@ -10,7 +10,7 @@ ai-usage: ai-assisted
 
 This article explains how to remove Defender for Containers from your EKS clusters and AWS environment. Follow these steps when you need to completely uninstall the service or troubleshoot deployment issues.
 
-When you enable Defender for Containers capabilities that use automatic provisioning, or use recommendations to manually deploy container capabilities on specific resources, you install Defender components and extensions in your environment. To help you keep track of these components, the following sections provide tables that show the Defender for Clouds feature and its installed Defender for Container components, extensions, and roles.
+When you enable Defender for Containers capabilities that use automatic provisioning, or use recommendations to manually deploy container capabilities on specific resources, you install Defender components and extensions in your environment. To help you keep track of these components, the following sections provide tables that show the Defender for Cloud's feature and its installed Defender for Container components, extensions, and roles.
 
 If you decide to stop using those capabilities, you might also want to remove these components from your environment. This article helps you understand the actions you can take to remove them.
 

articles/defender-for-cloud/defender-for-containers-azure-remove.md

@@ -10,7 +10,7 @@ ai-usage: ai-assisted
 
 This article explains how to disable and remove Defender for Containers from your AKS environment.
 
-When you enable Defender for Containers capabilities that use automatic provisioning, or use recommendations to manually deploy container capabilities on specific resources, you install Defender components and extensions in your environment. To help you keep track of these components, the following sections provide tables that show the Defender for Clouds feature and its installed Defender for Container components, extensions, and roles.
+When you enable Defender for Containers capabilities that use automatic provisioning, or use recommendations to manually deploy container capabilities on specific resources, you install Defender components and extensions in your environment. To help you keep track of these components, the following sections provide tables that show the Defender for Cloud's feature and its installed Defender for Container components, extensions, and roles.
 
 If you decide to stop using those capabilities, you might also want to remove these components from your environment. This article helps you understand the actions you can take to remove them.
 

articles/defender-for-cloud/defender-for-containers-gcp-remove.md

@@ -10,7 +10,7 @@ ai-usage: ai-assisted
 
 This article explains how to disable and remove Defender for Containers from your GCP GKE environment.
 
-When you enable Defender for Containers capabilities that use automatic provisioning, or use recommendations to manually deploy container capabilities on specific resources, you install Defender components and extensions in your environment. To help you keep track of these components, the following sections provide tables that show the Defender for Clouds feature and its installed Defender for Container components, extensions, and roles.
+When you enable Defender for Containers capabilities that use automatic provisioning, or use recommendations to manually deploy container capabilities on specific resources, you install Defender components and extensions in your environment. To help you keep track of these components, the following sections provide tables that show the Defender for Cloud's feature and its installed Defender for Container components, extensions, and roles.
 
 If you decide to stop using those capabilities, you might also want to remove these components from your environment. This article helps you understand the actions you can take to remove them.
 

articles/defender-for-cloud/defender-partner-applications.md

@@ -21,7 +21,7 @@ The security scan results from partner applications are available within Defende
 
 ## Prerequisites
 
-This feature requires a DevOps connector in Defender for Cloud. See [how to onboard onboard DevOps environments](devops-support.md).
+This feature requires a DevOps connector in Defender for Cloud. See [how to onboard DevOps environments](devops-support.md).
 
 | Aspect | Details |
 |--|--|