![]() Email reported by user as malware or phish.Email messages containing phish URLs removed after delivery.Email messages containing malware removed after delivery.A potentially malicious URL click was detected.The following types of alerts are supported with the data collector: By ingesting Office 365 ATP alerts into Azure Sentinel, you can incorporate information about email and URL based threats into your broader risk analysis and build response scenarios accordingly. Office 365 Advanced Threat Protection (ATP) safeguards your organization against malicious threats posed by email messages, links (URLs) and collaboration tools. Now you can use the built-in data connector to collect alerts from Office 365 Advanced Threat Protection into Azure Sentinel. There are some use cases in the SIEM (Security Information and Event Management) world that require correlation with alerts from an expert system like Office 365 Advanced Threat Protection (ATP).
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |