Merge pull request #2687 from MicrosoftDocs/main

Auto Publish – main to live - 2026-03-31 17:17 UTC

Author: learn-build-service-prod[bot]

articles/defender-for-cloud/defender-for-apis-prepare.md

@@ -28,6 +28,7 @@ Defender for APIs is available in the Azure commercial cloud, in these regions:
 - Japan (Japan East, Japan West)
 - Korea (Korea Central, Korea South)
 - Norway (Norway East, Norway West)
+- South Africa (South Africa North, South Africa West)
 - Sweden (Sweden Central, Sweden South)
 - Switzerland (Switzerland North, Switzerland West)
 - UK (UK South, UK West)

articles/defender-for-cloud/enable-api-security-posture.md

@@ -41,6 +41,7 @@ API Security Posture Management within Defender CSPM is available in the Azure c
 - Japan (Japan East, Japan West)
 - Korea (Korea Central, Korea South)
 - Norway (Norway East, Norway West)
+- South Africa (South Africa North, South Africa West)
 - Sweden (Sweden Central, Sweden South)
 - Switzerland (Switzerland North, Switzerland West)
 - UK (UK South, UK West)

articles/defender-for-cloud/release-notes.md

@@ -3,7 +3,7 @@ title: What's new in Microsoft Defender for Cloud features
 description: What's new and updated in Microsoft Defender for Cloud features
 ms.topic: overview
 ms.custom: references_regions
-ms.date: 03/31/2026
+ms.date: 04/01/2026
 ---
 
 # What's new in Defender for Cloud features
@@ -28,10 +28,30 @@ This article summarizes what's new in Microsoft Defender for Cloud. It includes
 <!-- 5. Under the relevant month, add a short paragraph about the new feature. Give the paragraph an H3 (###) heading. Keep the title short and not rambling. -->
 <!-- 6. In the Update column, add a bookmark to the H3 paragraph that you created (#<bookmark-name>) .-->
 
+## April 2026
+
+| Date | Category | Update |
+| -------- | -------- | -------- |
+| April 1, 2026 | Upcoming change | [Update to Defender for SQL servers on machines plan for Fairfax customers](#update-to-defender-for-sql-servers-on-machines-plan-for-fairfax-customers) |
+
+### Update to Defender for SQL servers on machines plan for Fairfax customers
+
+April 1, 2026
+
+The Defender for SQL Server on machines plan in Microsoft Defender for Cloud protects SQL Server instances hosted on Azure, AWS, GCP, and on-premises machines.
+
+To simplify onboarding and improve protection coverage, we're releasing an enhanced agent solution for Fairfax customers at the end of April. The new solution uses the existing SQL infrastructure, so you no longer need to deploy the Azure Monitor Agent (AMA).
+
+**Required customer actions:**
+
+- [Update Defender for SQL Servers on Machines plan configuration](update-sql-machine-configuration.md): If you enabled the Defender for SQL Server on machines plan before April 2026, follow these instructions to update your configuration.
+- [Verify SQL Server instances protection status](verify-machine-protection.md): With an estimated starting date of May 2026, you must verify the protection status of your SQL Server instances across your environments. Learn how to [troubleshoot deployment issues for Defender for SQL on machines configuration](troubleshoot-sql-machines-guide.md).
+
 ## March 2026
 
 | Date | Category | Update |
 | -------- | -------- | -------- |
+| March 31, 2026 | GA | [Malware automated remediation in Defender for Storage](#malware-automated-remediation-in-defender-for-storage)|
 | March 31, 2026| Update | [Support for additional Azure regions for Defender for APIs and API security posture management with Defender CSPM](#support-for-additional-azure-regions-for-defender-for-apis-and-api-security-posture-management-with-defender-cspm) |
 | March 30, 2026 | Preview | [AI model security for Azure Machine Learning (Preview)](#ai-model-security-for-azure-machine-learning-preview) |
 | March 29, 2026 | Preview | [Expanded multicloud coverage for AWS and GCP (Preview)](#expanded-multicloud-coverage-for-aws-and-gcp-preview) |
@@ -43,6 +63,19 @@ This article summarizes what's new in Microsoft Defender for Cloud. It includes
 | March 04, 2026 | Deprecation | [Deprecation of preview of container and container images vulnerability recommendations](#deprecation-of-preview-of-container-and-container-images-vulnerability-recommendations) |
 | March 04, 2026 | Preview |[New individual recommendations format in Azure portal (Preview)](#new-individual-recommendations-format-in-azure-portal-preview)|
 
+
+### Malware automated remediation in Defender for Storage
+
+March 31, 2026
+
+Malware automated remediation in Defender for Storage malware scanning is now generally available. 
+
+Defender for Cloud now lets you configure automatic soft deletion of detected malicious blobs during on-upload or on-demand scanning. Auto-deletion keeps harmful content in quarantine and makes it recoverable for further investigation.
+
+You can enable or disable automated malware remediation at the subscription level or the storage account level in Microsoft Defender for Cloud in the Azure portal or with an application programming interface (API).
+
+Learn how to use [built-in automated malware remediation for malicious blobs](/azure/defender-for-cloud/defender-for-storage-configure-malware-scan#built-in-automated-malware-remediation-for-malicious-blobs).  
+
 ### Support for additional Azure regions for Defender for APIs and API security posture management with Defender CSPM
 
 
@@ -60,6 +93,8 @@ Microsoft Defender for APIs and API security posture management with Defender CS
 - Switzerland West
 - Korea Central
 - Korea South
+- South Africa North
+- South Africa West
 
 Customers who have Azure API Management services in these regions can now use the capabilities offered by Microsoft Defender for APIs and API security posture management with Defender CSPM.
 API discovery and security posture capabilities in Defender CSPM for Azure Function Apps and Azure Logic Apps have also been expanded to these regions. This feature is still in Preview.