Views:
Threat Investigations can correlate information from Endpoint Sensor, Cloud App Security, and Active Directory to display attack information about an endpoint, user account, and possible email attack vectors throughout your network.
The Email Message pane displays information about selected email messages associated with the Analysis Chain and provides further details about users within your organization.
The following table highlights some of the correlated data.
Data
Description
Recipients
Click to display a list of all of the recipients that received the email message
Attachments
Click to displays a list of all files attached to the email message
Embedded URLs
Click to displays a list of all URLs embedded in the email body
Affected Users
Click to display a list of all of the email accounts within your organization that currently have the specified file attached to an email message within the email account