*For this entry exists the more relevant or more recent entry MC1058262
check before: 2025-06-01
Product:
Purview Communication Compliance, Purview Information Protection, Purview Insider Risk Management
Platform:
Web, World tenant
Status:
In development
Change type:
Links:

Details:
In this update, we are making the below enhancements to Insider Risk Management (IRM) exclusions to reduce alert noise. 1. Keyword logic update for email - An email will be excluded from scoring only when all the attachments match the keyword exclusions or email subject matches the keyword exclusions. This will be helpful to reduce the email signature noise which commonly contains keyword "image". 2. Keyword exclusions on both target and source file paths - For signals like file copied to removable media, keyword exclusions apply on both target and source file paths. 3. File path exclusions for removable media - We will start supporting file path exclusions for removable media. 4. Exclusion support for browser - Domain exclusions are now supported for browsing indicators. Microsoft Purview Insider Risk Management correlates various signals to identify potential malicious or inadvertent insider risks, such as IP theft, data leakage, and security violations. Insider Risk Management enables customers to create policies based on their own internal policies, governance, and organizational requirements. Built with privacy by design, users are pseudonymized by default, and role-based access controls and audit logs are in place to help ensure user-level privacy.
Change Category:
XXXXXXX ... free basic plan only
Scope:
XXXXXXX ... free basic plan only
Release Phase:
General Availability, Preview
Created:
2025-03-27
updated:
2025-03-27
Public Preview Start Date
XXXXXXX ... free basic plan only
Docu to Check
XXXXXXX ... free basic plan only
MS workload name
XXXXXXX ... free basic plan only
summary for non-techies**
Microsoft Purview's Insider Risk Management has been enhanced to reduce unnecessary alerts by checking all email contents for specific criteria, allowing exclusion of trusted file paths and websites from monitoring, thereby focusing on genuine security threats.
Direct effects for Operations**
Please, look at the most relevant linked item for details
explanation for non-techies**
XXXXXXX ... free basic plan only
** AI generated content. This information must be reviewed before use.
a free basic plan is required to see more details. Sign up here
A cloudsocut.one plan is required to see all the changed details. If you are already a customer, choose login.
If you are new to cloudscout.one please choose a plan.
Last updated 3 days ago