O'Reilly logo
  • Angelie Soto thinks this is interesting:

When a VM is assigned a public IP Address, it is exposed to the public internet. The only protection from attackers would include network security groups (NSGs) associated with the NIC or the subnet where the VM resides. The administrator of the VM could implement OS based Firewalling techniques providing additional security

From

Cover of Exam Ref 70-533 Implementing Microsoft Azure Infrastructure Solutions

Note

One of the things to change is not using the default remote ports well known by hackers. Use alternate ports