Suspicious logins are an integral detection within the cloud directory posture, to identify users at risk for account compromise. A recent enhancement to these detections now raises the issue severity of admin users with abnormal login activity, as well as any logins from high-risk countries (ex. Russia, N. Korea, etc).

Phishing Simulations are a essential method to gauge security awareness and identify “weak links” across the employee base. Failed users can be mistakenly identified when 3rd part email security triggers a link or causes a false positive. A new improvement has been implemented to more accurately detect users who fail the simulation and generate relevant issues that will lead to further user training.