DLP Alerts

CodnChips · ‎Apr 25 2022

Hi Has anyone noticed or aware of a backend change, that has altered the behaviour of 365 Defender behaviour towards DLP policy breaches? We use DLP and whilst alerts will trigger, only rarely was it triggered all the way through to Sentinel. Now we've got Sentinel going bananas over incidents which it didn't seem to care about before. I figure either "someone" has altered a setting or there's an infrastructure change. There were changes in the interface last week as we had "Take a tour, see what's new" dialogue. Obvs, I've asked the right people internally if anyone has made any changes (which resulted in a resounding "NO!".

Somethings' changed somewhere....

CodnChips · ‎May 10 2022

I believe in February they did an update to the connector and more alerts flow now.
https://docs.microsoft.com/en-us/azure/sentinel/whats-new?msclkid=e345823ed06a11ec9f46c9fdfec6cf1e#v...

CodnChips · ‎May 12 2022

Hey Doug, thanks for your response. Yes, we had it followed up with MS and the connector now spews EVERYTHING!!! Apparently it's an "all or nothing"

CodnChips · ‎May 10 2022

I believe in February they did an update to the connector and more alerts flow now.
https://docs.microsoft.com/en-us/azure/sentinel/whats-new?msclkid=e345823ed06a11ec9f46c9fdfec6cf1e#v...

View solution in original post

DLP Alerts

DLP Alerts

Re: DLP Alerts

Re: DLP Alerts

Re: DLP Alerts

Products (50)

Special Topics (27)

Video Hub (462)

Most Active Hubs

Most Active Hubs

Video Hub

DLP Alerts