124970 – Microsoft Purview compliance portal: Insider Risk Management – Sequence detections for obfuscation involving excluded events (archived)

cloudscout.one Icon

check before: 2024-01-01


Purview Communication Compliance, Purview Insider Risk Management


Web, World tenant


In development

Change type:

Feature update



This change enhances sequence detection to improve its effectiveness in identifying users who are performing obfuscation activities that may result in a data security incident, such as file renaming, to evade detection. With this improvement, Insider Risk Management can detect sequences that may result in potential data security incidents, even if the obfuscation activities in those sequences involve excluded events, such as an excluded keyword. Microsoft Purview Insider Risk Management correlates various signals to identify potential malicious or inadvertent insider risks, such as IP theft, data leakage, and security violations. Insider Risk Management enables customers to create policies to manage security and compliance. Built with privacy by design, users are pseudonymized by default, and role-based access controls and audit logs are in place to help ensure user-level privacy.

Change Category:


Release Phase:
Preview, General Availability



the free basic plan is required to see all details. Sign up here

A cloudsocut.one plan is required to see all the changed details. If you are already a customer, choose login.
If you are new to cloudscout.one please choose a plan.

Last updated 1 week ago

Share to MS Teams

Login to your account

Welcome Back, We Missed You!