cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
SOLVED

ZAP Result

chadsung
Senior Member

‎Feb 28 2023 04:37 AM

‎Feb 28 2023 04:37 AM

ZAP Result

Hi,

 

When dealing with an email that was handled by the ZAP action, I came across this result "ZAP took no action due to user triage" and the final action taken being "None".

The email was originally delivered to Inbox and after nearly 12 hours, the ZAP action was taken. But I am not able to find explanation as to what this result of ZAP refers to, could anyone please provide a link for the documentation for this scenario or provide a brief explanation?

 

Thank You

Labels:
243 Views
0 Likes
1 Reply
Reply
1 Reply
best response confirmed by chadsung (Senior Member)
ExMSW4319

‎Feb 28 2023 09:15 AM

‎Feb 28 2023 09:15 AM

Solution

Re: ZAP Result

There isn't a definitive Microsoft item of documentation describing user triage (Google Search). My interpretation of the event is by the time ZAP acted, the user had already deleted the item. Remember that Threat Explorer does not show user actions. You can only infer them from manual and automated remediation results.
1 Like
Reply