Suspicious communication over DNS

Reninraj · ‎Nov 20 2019

I have received a message mentioning Suspicious communication over DNS in my ATP. Why I am getting this error? While checking the activity different host name which does not belong to my organization is displayed. How to analyze this issue?

Eli Ofek · ‎Nov 20 2019

@Reninraj , export the alert to excel, you will get more details about those source machines.

And see this guide for more details:

https://docs.microsoft.com/en-us/azure-advanced-threat-protection/atp-exfiltration-alerts#suspicious...

Products (50)

Special Topics (27)

Video Hub (462)

Most Active Hubs

Most Active Hubs

Video Hub

Suspicious communication over DNS