I have received an alert inside the ATP "Suspicious connection blocked by network protection on one endpoint".
What action needs to be taken on this.
@Prashant Sharma What are you trying to accomplish? Is there a problem this is causing?It seems like that type of event was created by Windows Defender Exploit Guard Attack Surface Reduction > Network Protection trying to protect the endpoint. Do you see any other suspicious behavior? Gladyshttps://azsecuritypodcast.net/