“Investigation priority score increase” Policy to be retired
The "Investigation priority score increase" policy in Microsoft Defender for Cloud Apps will be retired between June and July 2024 due to high false positives and limited value. Administrators should use the Advanced Hunting query as an alternative. According to the post on M365 Admin, the retirement of this policy is a result of limited value it provides due to high false positives alert. Service Operations Center (SOC) administrators and analysts will no longer be able to access, manage and use this policy alert in "Microsoft Defender for Cloud Apps" after the change is implemented. The retirement will be carried out gradually between June and July 2024. Organizations who are using this policy type are advised to use the Advanced Hunting query, as an alternative. Using this query will help in detecting risky users. Microsoft is committed to delivering high-quality, reliable security solutions that meet the needs and expectations of its users and will continue to improve its services.
The post "Investigation priority score increase" Policy to be retired appeared first on M365 Admin.
Published on:
Learn more
Related posts
Cloud Discovery anomaly detection policy to be retired
Microsoft has announced that the "Cloud Discovery anomaly detection" policy in Defender for Cloud Apps will be retired due to the high rate of...
Configuration Change – Microsoft Defender for Cloud Apps threat protection policies
Microsoft is making changes to the default threat protection policies for Microsoft Defender for Cloud Apps. These policies will now be disabl...
Microsoft Defender for Cloud Apps: Behaviors
Microsoft 365 Defender Advanced Hunting has introduced a new data type called "Behaviors". This addition will enable the security teams to pri...
Microsoft Defender for Office 365: Email and associated entities hunting capabilities available through Microsoft Graph Security API
Microsoft has introduced email and related entity hunting capabilities to the Microsoft Graph Security API. This enables the hunt for email me...
Microsoft Defender for Office 365: Quarantine Notifications enabled for Preset Security Policies
Microsoft Defender for Office 365 is set to roll out an update to the recommended quarantine notification policy in the Standard and Strict pr...
Changes to Cloud App Catalog and Risk score calculation
Microsoft Defender for Cloud Apps is implementing changes to the Cloud App Catalog to improve the scoring of apps. The changes involve the rem...
Changes to Cloud App Catalog and Risk score calculation
Microsoft Defender for Cloud Apps is making some changes to improve the scoring of apps in the Cloud App Catalog, which will affect organizati...
Episode 426 - Defender for the Cloud
In this episode, Audrey Long, a Senior Security Software Engineer at Microsoft, provides insights on the Defender for the Cloud service. The p...
Advanced Threat Hunting with Microsoft 365 Defender
In this podcast episode, Michael and Michael dive into the world of advanced threat hunting using Microsoft 365 Defender. Joining the conversa...