Forum Discussion
Suspicious connection blocked by network protection on one endpoint
Hi All,
I have received an alert inside the ATP "Suspicious connection blocked by network protection on one endpoint".
What action needs to be taken on this.
GladysMicrosoft
Prashant Sharma
What are you trying to accomplish? Is there a problem this is causing?
It seems like that type of event was created by Windows Defender Exploit Guard Attack Surface Reduction > Network Protection trying to protect the endpoint. Do you see any other suspicious behavior?
Gladys
https://azsecuritypodcast.net/
