Merge pull request #11755 from Azure/shainw-fixMailItemsUrl

ashwin-patil · web-flow · commit 939d1bdd5758 · 2025-02-03T10:53:01.000-08:00
Update MailItemsAccessedTimeSeries.yaml
diff --git a/Solutions/Microsoft 365/Analytic Rules/MailItemsAccessedTimeSeries.yaml b/Solutions/Microsoft 365/Analytic Rules/MailItemsAccessedTimeSeries.yaml
@@ -5,7 +5,7 @@ description: |
   The query leverages KQL built-in anomaly detection algorithms to find large deviations from baseline patterns.
   Sudden increases in execution frequency of sensitive actions should be further investigated for malicious activity.
   Manually change scorethreshold from 1.5 to 3 or higher to reduce the noise based on outliers flagged from the query criteria.
-  Read more about MailItemsAccessed- https://docs.microsoft.com/microsoft-365/compliance/advanced-audit?view=o365-worldwide#mailitemsaccessed'
+  Read more about MailItemsAccessed- https://learn.microsoft.com/en-us/purview/audit-log-investigate-accounts'
 severity: Medium
 status: Available
 requiredDataConnectors:
@@ -76,5 +76,5 @@ entityMappings:
     fieldMappings:
       - identifier: Address
         columnName: SourceIPMax
-version: 2.0.5
-kind: Scheduled
+version: 2.0.6
+kind: Scheduled
