Searching for Emails in Comprehensive Email Security and Beyond
This document is a walkthrough on how to search for emails.
Search
In the IRONSCALES dashboard, there are multiple ways to see whether the system has taken an action on an email.
-
Use the header-FROM or the Subject line. You can search for it in the Investigation Tab. In this example, a portion of the header-FROM is being used to search for an email:
Click the Incident ID:
The incident will be displayed to be reviewed
-
In Incidents > Reported Incidents, search for the header-FROM or check out the Subject line, which lists the incidents reported by a user or the system. This example shows the use of the Subject line for the search
Click this button:
And review the incident,
-
In Incidents > Remediated Emails, use the header-FROM or check out the Subject line, which lists the incidents that IRONSCALES took action on. The action can be either adding an inline message or moving to quarantine or spam. This example shows that IRONSCALES added the inline message:
Investigating the incident:
-
Scroll down to the bottom of the Incident Details, and click Manage and Review.
-
-
Click this area to see what action was taken on the email in question:
-
-
Hovering over each action will show the timestamp of when the action was taken.
-
-
This example shows that the recipient received the email in question -> detected by Ironscales -> and an inline message was added to it -
"No incident was found through the suggested methods above"
If you still cannot find any incidents, this means that IRONSCALES did not take any action on the email. The next best step would be to search the email through your mail server.
In Microsoft, they have the Message Trace (Exchange Admin Center):
For GWS, they have the Email Log Search:
Note: If the email did not hit the mail server, IRONSCALES won't be able to take any action on it
We provides a SelfLearning NexGen User-Friendly platform combining AI and HumanInsights (HI) along with providing a number of advanced detection techniques for such Impersonation attempts, Polymorphic Attacks, Phishing, Fake Login, SocialEngineering, AccountTakeover, and URLs Links detection using ComputerVision Technology, 50+ engines scanning for advance MalwareDetection BEC Anomaly Detection using Natural Language Processing and offers a multi-layered approach, all combined with our Award Winning MLearning and AI-powered IncidentResponse and Virtual SOC remediating these attacks at the Mailbox level. SRC Cyber Solutions LLP in India provides the most comprehensive Mailbox Level Protection. If you want to know more kindly Click here