Search

56790 – Office 365: Access to crucial events in Advanced Audit (archived)

Information Protection

check before: 2019-11-30

Product:

Information Protection - Office 365, Microsoft 365 Apps, Office 365 general, Purview Audit (Premium)

Platform:

World tenant, Online

Status:

Launched

Change type:

Links:

Details:

Crucial security- and compliance-related audit events are ones that can help you investigate possible breaches or other forensic-related investigations. The first crucial event that we're releasing is the MailItemsAccessed mailbox auditing action. This action is triggered when mail data is accessed by mail protocols and mail clients. The MailItemsAccessed action can help investigators identify data breaches and determine the scope of messages that may have been compromised. If an attacker gained access to email messages, the MailItemsAccessed action will be triggered even if there is no explicit signal that messages were actually read (in other words, the type of access such as a bind or sync is recorded in the audit record).

Change Category:
XXXXXXX ...

Scope:
XXXXXXX ...

Release Phase:
General Availability

Created:
2019-10-18

updated:
2020-12-04

the free basic plan is required to see all details. Sign up here


A cloudsocut.one plan is required to see all the changed details. If you are already a customer, choose login.
If you are new to cloudscout.one please choose a plan.


Last updated 1 year ago

Share to MS Teams

Login to your account

Welcome Back, We Missed You!