{"id":4230,"date":"2023-12-01T10:01:45","date_gmt":"2023-12-01T01:01:45","guid":{"rendered":"https:\/\/m365jp.xyz\/?p=4230"},"modified":"2023-12-01T10:10:15","modified_gmt":"2023-12-01T01:10:15","slug":"mc694647-user-experience-improvements-and-persistent-views-in-threat-explorer-by-microsoft-defender-for-office-365","status":"publish","type":"post","link":"https:\/\/m365jp.net\/index.php\/2023-12-01-mc694647-user-experience-improvements-and-persistent-views-in-threat-explorer-by-microsoft-defender-for-office-365","title":{"rendered":"MC694647 | User experience improvements and persistent views in Threat Explorer by Microsoft Defender for Office 365"},"content":{"rendered":"<div class=\"postie-post\">\n<div>\n<hr>\n<table id=\"section\">\n<tbody>\n<tr>\n<th width=\"95%\">MC694647 | User experience improvements and persistent views in Threat Explorer by Microsoft Defender for Office 365<\/th>\n<\/tr>\n<\/tbody>\n<\/table>\n<hr>\n<table id=\"data\">\n<tbody>\n<tr>\n<th>Classification<\/th>\n<td>stayInformed<\/td>\n<\/tr>\n<tr>\n<th>Last Updated<\/th>\n<td>12\/01\/2023 00:57:04<\/td>\n<\/tr>\n<tr>\n<th>Start Time<\/th>\n<td>12\/01\/2023 00:56:47<\/td>\n<\/tr>\n<tr>\n<th>End Time<\/th>\n<td>02\/26\/2024 08:00:00<\/td>\n<\/tr>\n<tr>\n<th>Message Content<\/th>\n<td>\n<p>As part of our user experience enhancements, we will be rolling out the following improvements to the user experience of Threat Explorer by Microsoft Defender for Office 365:<\/p>\n<ul>\n<li>Persistent views<\/li>\n<li>Navigation between URL Clicks and All email tab<\/li>\n<li>Custom inputs for timestamp filter<\/li>\n<li>Remediation action results in Explorer<\/li>\n<\/ul>\n<p>[When this will happen:]<\/p>\n<p>Preview: We will begin the private preview by early December 2023 and will finish the rollout by mid-December 2023.<\/p>\n<p>Standard Release: We will begin the worldwide rollout by late December 2023 and will finish the rollout by mid-January 2024.<\/p>\n<p>[How this will affect your organization:]<\/p>\n<p>1. <i>Persistent views<\/i>: Explorer allows users to select the columns they want to see on the data grid and the columns they want to export as per their need and supporting data that they are looking for to investigate their cases and hunt for threats.   We have enhanced this experience to allow users to save these preferences, and the saved preferences will be used in consecutive actions.    <\/p>\n<ul>\n<li>User preferences will be specific to the web browser in use and the user. Users will have an option to save different preferences in different web browsers.  <\/li>\n<li>If users are in private browsing mode, preferences will be active until the browse session is active. Closing all tabs in private browsing mode will allow users to erase those preferences by closing all tabs.  <\/li>\n<li>Users will be able to save different preferences for individual tabs in Explorer (All email, Malware, Phish, Campaign, Content Malware, URL Clicks) for both result sets and customizable columns.  <\/li>\n<li>Preferences will be saved each time the user clicks on \u201cApply\u201d in customize columns flyout and \u201cExport\u201d in customize export flyout.  <\/li>\n<li>Saved preferences for the data grid will be reused each time the user clicks on refresh, applies filters, or lands on explorer via deep links provided in alerts, incidents, AIR, submission, and so on.  <\/li>\n<li>Saved preferences for export will be retained until the user changes the preference.  <\/li>\n<\/ul>\n<p>2. <i>Navigation between URL Clicks and All email tab<\/i>: The recently added URL clicks tab allow users to see end user clicks on URLs across emails, Teams messages, and documents shared across SPO\/OD. Users will be able to navigate between the URL clicks   tab and the All email tab of Explorer, allowing users to be more effective and efficient while hunting via clicks on malicious URLs.  <\/p>\n<ul>\n<li>Users can select up to 10 clicks belonging to the \u201cEmail\u201d workload from the URL clicks tab and use the \u201cView all emails\u201d button to navigate to the All email tab to see the corresponding emails (using NetworkMessageID and Recipeint).&nbsp;<img decoding=\"async\" style=\"width: 752px;\" src=\"https:\/\/img-prod-cms-rt-microsoft-com.akamaized.net\/cms\/api\/am\/imageFileData\/RW1f2bs?ver=e506\"><\/li>\n<li>The URL clicks and Top Clicks tabs in the result set section now have a \u201cView all clicks\u201d option to navigate from the All email tab to the URL clicks tab.  <\/li>\n<li>These navigations will honor the applied filters in the All email and URL clicks tabs if the applied filter is present in both tabs.  <\/li>\n<\/ul>\n<p>3. <i>Custom inputs for timestamp filter<\/i>: The timestamp filter in Explorer will now allow users to input time ranges along with the current filter where users can select the time range from the dropdown options. Since the current dropdown allows users   to select a time range in increments of 30 minutes only, this enhancement will allow users to manually enter more granular time ranges to narrow down the searches per their requirements.<\/p>\n<p><img decoding=\"async\" style=\"width: 300px;\" src=\"https:\/\/img-prod-cms-rt-microsoft-com.akamaized.net\/cms\/api\/am\/imageFileData\/RW1f2bv?ver=f512\">  <\/p>\n<p>  <\/p>\n<p>4. <i>Remediation action results in Explorer<\/i>:<b> <\/b>SOC teams have direct and in-line visibility into manual remediation, quarantine release, and system post-delivery actions like ZAP and reprocessed messages (for FP recovery) in Threat Explorer\u2019s result   set. The result of the action will be appended to the action name for respective actions in the Additional Actions column of Threat Explorer.  <\/p>\n<p><img decoding=\"async\" style=\"width: 752px;\" src=\"https:\/\/img-prod-cms-rt-microsoft-com.akamaized.net\/cms\/api\/am\/imageFileData\/RW1f4O9?ver=7036\">  <\/p>\n<p>[What you need to do to prepare:]  <\/p>\n<p>You do not have to do anything to prepare.&nbsp;<\/p>\n<p>  <\/p>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table><\/div>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>MC694647 | User experience improvements and persistent views in Threat Explorer by Microsoft Defender for Offi [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-4230","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"_links":{"self":[{"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/posts\/4230","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/comments?post=4230"}],"version-history":[{"count":0,"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/posts\/4230\/revisions"}],"wp:attachment":[{"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/media?parent=4230"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/categories?post=4230"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/tags?post=4230"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}