Security Experts:

Connect with us

Hi, what are you looking for?


Incident Response

New Tool Helps G Suite Admins Uncover Security Threats

Google on Tuesday announced the general availability of a tool that helps G Suite customers identify security issues within their domains, and take action.

Google on Tuesday announced the general availability of a tool that helps G Suite customers identify security issues within their domains, and take action.

Referred to as Investigation tool, the feature was made available as part of an Early Adopter Program in July, and is now accessible to all G Suite Enterprise and Enterprise for Education editions.

Building on existing capabilities in the security center, Google says the tool will provide admins and security analysts with the ability to identify, triage, and remediate security threats.

The investigation tool includes advanced search capabilities, to easily identify security issues within a domain, and can be used to triage threats regardless of whether they are targeting users, devices, or data.

More importantly, the utility provides admins with the option to take bulk actions on any of the discovered issues, to limit the propagation and impact of threats.

Based on the feedback received from those participating in the Early Adopter Program, Google has already improved the investigation tool with a series of new features.

Thus, the search giant says it enhanced security to prevent insider risk through offering the option to require a second admin to verify large actions in the investigation tool.

Customers now also take advantage of more fine-grained visibility while investigating incidents, the company says. There’s email header analysis available to see attributes and the delivery path for the email, along with visibility into Team Drive settings and the option to change access permissions directly from the utility.

The investigation tool also includes a simplified interface, featuring user auto-complete. Emails and names from the organization , for examples, will be auto-completed as an admin types in parameters.

“The investigation tool, with its simple UI, makes it easier for admins to identify threats without having to worry about analyzing logs which can be time-consuming and require complex scripting,” Google said.

Related: Google Launches Alert Center for G Suite

Related: Google Announces New Security Tools for Cloud Customers

Related: New G Suite Alerts Provide Visibility Into Suspicious User Activity

Written By

Ionut Arghire is an international correspondent for SecurityWeek.

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Expert Insights

Related Content

Data Breaches

GoTo said an unidentified threat actor stole encrypted backups and an encryption key for a portion of that data during a 2022 breach.


A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the...

Incident Response

Cygnvs emerges from stealth mode with an incident response platform and $55 million in Series A funding.

Application Security

GitHub this week announced the revocation of three certificates used for the GitHub Desktop and Atom applications.

Data Breaches

T-Mobile disclosed another massive data breach affecting approximately 37 million customer accounts.

Incident Response

A new Mississippi Cyber Unit will be the state’s centralized cybersecurity threat information, mitigation and incident reporting and response center.


Albanian prosecutors on Wednesday asked for the house arrest of five public employees they blame for not protecting the country from a cyberattack by...


Thoma Bravo will spend $1.3 billion to acquire Canadian software firm Magnet Forensics, expanding a push into the lucrative cybersecurity business.