Microsoft Defender for Office 365: AIR Initiated Remediation Logging
Microsoft Defender for Office 365 has introduced an update that allows for the logging of remediations generated by Automated Incident Response (AIR). By differentiating between remediations produced by AIR versus manual remediations initiated by security operations (SecOps) teams, users will gain more granular insights into the actions taken to secure their systems. The update will log any message that is remediated as a result of an approved AIR action as a SecOps-approved, automated action. Microsoft Defender for Office 365 is a cloud-based platform used for threat protection, automated investigation, and response in Microsoft 365.
The post Microsoft Defender for Office 365: AIR Initiated Remediation Logging originally appeared on M365 Admin.
Published on:
Learn more
Related posts
Microsoft Defender for Office 365: Enhanced multiple action experience from Threat explorer
Microsoft Defender for Office 365 has introduced enhancements to its Threat explorer feature, enabling SecOps personnel to take multiple actio...
Microsoft Defender for Office 365: Updated submission results
Microsoft Defender for Office 365 has recently updated its submission results to remove any confusion that administrators and security operato...
Microsoft Defender for Office 365: Auto-Remediation of Malicious Entity Clusters Identified in Automated Investigation and Response (AIR)
Microsoft Defender for Office 365 is set to receive an update that will enhance its automated investigation and response (AIR) feature with au...
Microsoft Defender for Office 365: False positive email release from Quarantine through threat explorer, email summary panel, and email entity page take action
The Microsoft Defender for Office 365 now enables SecOps to manage false positives and release quarantined messages to the inbox via the Threa...
Microsoft Defender for Office 365: Create Simulations with Attack Simulation Training Graph API
The Attack Simulation Training Graph APIs introduced by Microsoft Defender for Office 365 offer enhanced control and flexibility for creating ...
Microsoft Defender for Office 365: Enabling malware filter bypass for SecOps Mailboxes
Microsoft is rolling out an update to enable security operations (SecOps) teams to analyze messages with malware verdicts for their own review...
Microsoft Defender for Office 365: Teams Security
Good news for Microsoft Teams users! Microsoft Defender for Office 365 is set to provide enhanced security operations and protection for Teams...
Introducing Threat Explorer V3 by Microsoft Defender for Office 365
Microsoft Defender for Office 365 is now introducing the latest version of Threat Explorer- Version 3. This tool has been an integral part of ...
Microsoft Defender for Office 365: Limitless Tenant Allow/Block List
Microsoft is updating its Defender for Office 365 security platform to allow customers with MDO P2 or E5 security to create unlimited block an...