- DLP -> Data Security Finding -> Email - DLP - Malware -> Detection Finding -> Email - Malware - Phishing -> Detection Finding -> Email - Phishing - Anomaly - New delete-all-emails rule -> Detection Finding -> Identity - Persistence - Users Sending Malicious Emails -> Detection Finding -> Identity - Persistence - Move all emails to a subfolder -> Detection Finding -> Identity - Persistence - AI-Based Detection of Anomalous Logins -> IAM Analysis Finding -> Identity - Account Compromise - Login from Malicious IP Address -> IAM Analysis Finding -> Identity - Account Compromise - First Time in New Country -> IAM Analysis Finding -> Identity - Login - Auto-forwarding to External Email Address -> Detection Finding -> Identity - Persistence - Unusual Country Anomaly -> IAM Analysis Finding -> Identity - Login - Suspicious Geo Anomaly (Impossible Travel) -> IAM Analysis Finding -> Identity - Login - Suspicious MFA Login Failure -> IAM Analysis Finding -> Identity - Login - Client is a vulnerable browser -> Application Security Posture Finding -> Posture - Posture Concern - Anomaly - Leaked Credentials -> Detection Finding -> Identity - Public Credential Exposure - Suspected Phishing -> Detection Finding -> Email - DLP - Suspected Malware -> Detection Finding -> Email - Phishing - Shadow IT -> Application Security Posture Finding -> Posture - Posture Concern - Spam -> Email Activity - Alert -> Detection Finding -> Other - Unknown - Alert - DMARC -> Application Security Posture Finding -> Posture - Posture Concern - Malicious URL Click -> Detection Finding -> Email - Malicious Link - Proceed to Malicious URL -> Detection Finding -> Email - Malicious Link Case links: \`https://${customerId}.avanan.net/#/profile/event/${saasEntityType}/${entityId}