SECURITYWEEK NETWORK:

ICS:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Incident Response

New Tool Helps G Suite Admins Uncover Security Threats

Google on Tuesday announced the general availability of a tool that helps G Suite customers identify security issues within their domains, and take action.

Google on Tuesday announced the general availability of a tool that helps G Suite customers identify security issues within their domains, and take action.

Referred to as Investigation tool, the feature was made available as part of an Early Adopter Program in July, and is now accessible to all G Suite Enterprise and Enterprise for Education editions.

Building on existing capabilities in the security center, Google says the tool will provide admins and security analysts with the ability to identify, triage, and remediate security threats.

The investigation tool includes advanced search capabilities, to easily identify security issues within a domain, and can be used to triage threats regardless of whether they are targeting users, devices, or data.

More importantly, the utility provides admins with the option to take bulk actions on any of the discovered issues, to limit the propagation and impact of threats.

Based on the feedback received from those participating in the Early Adopter Program, Google has already improved the investigation tool with a series of new features.

Thus, the search giant says it enhanced security to prevent insider risk through offering the option to require a second admin to verify large actions in the investigation tool.

Customers now also take advantage of more fine-grained visibility while investigating incidents, the company says. There’s email header analysis available to see attributes and the delivery path for the email, along with visibility into Team Drive settings and the option to change access permissions directly from the utility.

Advertisement. Scroll to continue reading.

The investigation tool also includes a simplified interface, featuring user auto-complete. Emails and names from the organization , for examples, will be auto-completed as an admin types in parameters.

“The investigation tool, with its simple UI, makes it easier for admins to identify threats without having to worry about analyzing logs which can be time-consuming and require complex scripting,” Google said.

Related: Google Launches Alert Center for G Suite

Related: Google Announces New Security Tools for Cloud Customers

Related: New G Suite Alerts Provide Visibility Into Suspicious User Activity

Written By

Ionut Arghire is an international correspondent for SecurityWeek.

More from

Latest News

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

CIEM Chat: How to Reduce Cloud Identity Risk
March 26, 2024

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.

Register

Virtual Event: Ransomware Resilience & Recovery Summit
April 17, 2024

SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.

Register

People on the Move

Mike Dube has joined cloud security company Aqua Security as CRO.

Cody Barrow has been appointed as CEO of threat intelligence company EclecticIQ.

Shay Mowlem has been named CMO of runtime and application security company Contrast Security.

More People On The Move

Expert Insights

Related Content

Comodo Forums Hacked via Recently Disclosed vBulletin Vulnerability

Cybercrime

Comodo Forums Hacked via Recently Disclosed vBulletin Vulnerability

A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the...

October 1, 2019
Amazon’s Shuttering of Alexa Ranking Service Hits Cybersecurity Industry

Incident Response

Amazon’s Shuttering of Alexa Ranking Service Hits Cybersecurity Industry

Amazon has shut down Alexa.com.

May 6, 2022
Hackers Stole Encrypted Backups, MFA Settings from GoTo, LastPass Hackers Stole Encrypted Backups, MFA Settings from GoTo, LastPass

Data Breaches

LastPass Says DevOps Engineer Home Computer Hacked

LastPass DevOp engineer's home computer hacked and implanted with keylogging malware as part of a sustained cyberattack that exfiltrated corporate data from the cloud...

February 27, 2023

Incident Response

Microsoft Puts ChatGPT to Work on Automating Cybersecurity

Microsoft has rolled out a preview version of Security Copilot, a ChatGPT-powered tool to help organizations automate cybersecurity tasks.

March 28, 2023
Hackers Stole Encrypted Backups, MFA Settings from GoTo, LastPass Hackers Stole Encrypted Backups, MFA Settings from GoTo, LastPass

Data Breaches

GoTo Says Hackers Stole Encrypted Backups, MFA Settings

GoTo said an unidentified threat actor stole encrypted backups and an encryption key for a portion of that data during a 2022 breach.

January 24, 2023
GitHub Revokes Code Signing Certificates Following Cyberattack

Application Security

GitHub Revokes Code Signing Certificates Following Cyberattack

GitHub this week announced the revocation of three certificates used for the GitHub Desktop and Atom applications.

January 31, 2023
Facebook account takeovers Facebook account takeovers

Incident Response

Meta Develops New Kill Chain Thesis

Meta has developed a ten-phase cyber kill chain model that it believes will be more inclusive and more effective than the existing range of...

March 16, 2023
VMware vulnerability VMware vulnerability

Cloud Security

VMware vCenter Flaw So Critical, Patches Released for End-of-Life Products

VMware described the bug as an out-of-bounds write issue in its implementation of the DCE/RPC protocol. CVSS severity score of 9.8/10.

October 25, 2023