Azure Safety / Security of Data in VM

Raz 21 Reputation points
2021-01-27T22:24:38.2+00:00

Hello,

I want to know how secure and safe is cloud VM? If I created a Win VM and used for some time, what are the chances after I delete that VM, other user could recover my data by undelete or data recovery softwares? Since technically, the hardware for data storage remains same.

Thanks
Regards,

Azure Virtual Machines
Azure Virtual Machines
An Azure service that is used to provision Windows and Linux virtual machines.
7,277 questions
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,216 questions
0 comments No comments
{count} votes

2 answers

Sort by: Most helpful
  1. Stanislav Zhelyazkov 21,506 Reputation points MVP
    2021-01-28T13:54:21.543+00:00

    Hi,
    Long story short. If the VM is not backed up after deletion cannot be restored. If it is backed up, it is a matter of who has access to the backup solution.
    If you want to have higher security besides just permissions, you can use Key Vault to encrypt the VM. Of course that means that you need to secure the Key Vault permissions as well.

    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

    0 comments No comments

  2. TravisCragg-MSFT 5,681 Reputation points Microsoft Employee
    2021-01-28T20:41:50.613+00:00

    If you are asking if someone can recover / gather your disk after you delete it in Azure, the answer is absolutely not. To my knowledge this has never happened in Azure, and security of data is an absolute priority for us.

    The only way for someone to gain access to your hard drive is by compromising your Virtual Machine or Azure Subscription. A deleted VM's disks can be recovered in some situations by a subscription administrator by creating a support request, and this can only be done for a few days after the deletion and is not guaranteed to succeed.

    Even if someone does gain access to the disk, it is encrypted by default on the azure platform, and you can add additional layers of encryption if desired.

    0 comments No comments