Forum Discussion
Password Spray Alert Policy
Hello All,
New to the forums and to CAS.
We are an O365 customer, with licensing for CAS, and I am trying to generate an alert policy for a password spray attack.
I want the alert to trigge...
Hi Tom Somerville,
Your long awaited requirement comes into action now. Microsoft is rolling out a new 'Password spray attack originating from single ISP' alert in Defender portal. This alert policy is enabled by default. Refer the below blog to know more on identifying crucial indicators and remediate actions.
https://blog.admindroid.com/password-spray-attack-detection-with-new-microsoft-365-defender-alert/
Your long awaited requirement comes into action now. Microsoft is rolling out a new 'Password spray attack originating from single ISP' alert in Defender portal. This alert policy is enabled by default. Refer the below blog to know more on identifying crucial indicators and remediate actions.
https://blog.admindroid.com/password-spray-attack-detection-with-new-microsoft-365-defender-alert/
