Aug 18 2020 10:28 AM
Hi All,
I have received an alert inside the ATP "Suspicious connection blocked by network protection on one endpoint".
What action needs to be taken on this.
Aug 18 2020 07:49 PM
@Prashant Sharma
What are you trying to accomplish? Is there a problem this is causing?
It seems like that type of event was created by Windows Defender Exploit Guard Attack Surface Reduction > Network Protection trying to protect the endpoint. Do you see any other suspicious behavior?
Gladys
https://azsecuritypodcast.net/