Update ddos-faq.yml

Author: aletheatoh

articles/ddos-protection/ddos-faq.yml

@@ -27,7 +27,7 @@ sections:
       - question: |
           What is Azure DDoS Protection Standard service?
         answer: |
-          Azure DDoS Protection Standard, combined with application design best practices, provides enhanced DDoS mitigation features to defend against DDoS attacks. It is automatically tuned to help protect your specific Azure resources in a virtual network. Protection is simple to enable on any new or existing virtual network, and it requires no application or resource changes. It has several advantages over the basic service, including logging, alerting, and telemetry. See [Azure DDoS Protection Standard overview](ddos-protection-overview.md) for more details. 
+          Azure DDoS Protection Standard, combined with application design best practices, provides enhanced DDoS mitigation features to defend against DDoS attacks. It is automatically tuned to help protect your specific Azure resources in a virtual network. Protection is simple to enable on any new or existing virtual network, and it requires no application or resource changes. See [Azure DDoS Protection Standard overview](ddos-protection-overview.md) for more details. 
           
       - question: |
           How does pricing work?
@@ -58,7 +58,7 @@ sections:
       - question: |
           Are services unsafe in Azure without the service?
         answer: |
-          Services running on Azure are inherently protected by Azure DDoS Protection Basic that is in place to protect Azure’s infrastructure. However, the protection that safeguards the infrastructure has a much higher threshold than most applications have the capacity to handle, and does not provide telemetry or alerting, so while a traffic volume may be perceived as harmless by the platform, it can be devastating to the application receiving it. 
+          Services running on Azure are inherently protected by the default infrastructure-level DDoS protection. However, the protection that safeguards the infrastructure has a much higher threshold than most applications have the capacity to handle, and does not provide telemetry or alerting, so while a traffic volume may be perceived as harmless by the platform, it can be devastating to the application receiving it. 
           
           By onboarding to the Azure DDoS Protection Standard Service, the application gets dedicated monitoring to detect attacks and application specific thresholds. A service will be protected with a profile that is tuned to its expected traffic volume, providing a much tighter defense against DDoS attacks.