Currently, the Azure SQL servers on which the Exmon db's are hosted have public access enabled. This comes with great security risks and it would be nice to limit these. Of course, a customer has the option to host the db's on their own on-prem infrastructure or Azure tenant but Exmon still requires access to upgrade the databases.
In order to make the current solution more secure, it could be interesting to implement IP whitelisting so the Exmon databases cannot be reached from any location.