Get analytics that be naughty online are behavioral anomaly detection. Relates to: Microsoft Cloud App Safety
Several failed login efforts
This detection identifies users that failed numerous login efforts in a single session with regards to the baseline discovered, that could suggest on a breach effort.
Information exfiltration to unsanctioned apps
This policy is immediately enabled to alert you each time a individual or internet protocol address target makes use of an application which is not sanctioned to do a task that resembles an endeavor to exfiltrate information from your own company.