Recommended Mitigation
It is recommended to doubly encrypt your data by enabling the infrastructure encryption. Please note that in order to enable infrastructure encryption for a storage account, you must configure a storage account to use infrastructure encryption at the time that you create the account. Infrastructure encryption cannot be enabled or disabled after the account has been created. The storage account must be of type general-purpose v2 or premium block blob.