Have your held Teams recordings or transcripts vanished after 21 days? There is an explanation, though I feel like I am stuck in an M365 eDiscovery issue rut. Really, I would like to be writing about more positive topics. This one popped up outside my usual eDiscovery testing while working with a new tech startup that heavily leverages recordings/transcripts for customer research, feature stories [...]
M365 Teams collections are already challenging corporate eDiscovery and provider teams with hidden SharePoint and OneDrive sites. Today’s Major Change Update Notification (MC261534 - reproduced at end for non-admins) covers the June-July roll out of Roadmap ID 81945 that dramatically expands custodian’s ability to associate existing/other Teams sites and automatically create private channel sites. More importantly, non-admin custodians are losing the ability to manually [...]
Teams transcripts are not currently available in M365 Content Search, eDiscovery or via the Graph API. As previously blogged about, Microsoft is busy consolidating the Microsoft 365 architecture to improve search and other functionality. There are obvious issues with working on the car while your customers are driving it, even when it is the most efficient solution. As of October 2020, the default Teams [...]
A peer with a looming deadline messaged me yesterday to ask if I knew of any way to export Advanced eDiscovery (AED2) collections without processing them into a review set. Despite a vague recollection from the Spring 2021 AED webinar of a MSFT PM saying that a ‘direct to export’ collection feature was on the road map I could not find confirmation. At this [...]
What can a 1,350 global enterprise survey tell us about the evolving composition and location of ESI? Although Araka’s fifth annual survey is focused on WAN and security infrastructure, it contains nuggets with eDiscovery impact. Over 80% of respondents expect more than 25% of workers to remain remote, confirming that the hybrid work environment is here to stay. 46% of respondents have deployed over [...]
Typical Response Tasks · Preservation · Forensics · Log analysis · Malware reverse engineering · Surveillance · Remediation · Endpoint detection & response · Exfiltration – eDiscovery · Physical security · Regulatory compliance · Consumer notification · Legal response · Law enforcement liaison The latest Microsoft Exchange breach moved downstream to 60,000+ SMB victims from the Solar Wind’s hack that targeted Microsoft and government [...]
A question to the eDiscovery Facebook group asked how others were handling the unindexed items reported in M365 core and AED searches. If you have not run M365 eDiscovery searches yet or not noticed the Status section of the search detail page, it provides the item count and volume of ‘unsearchable items’ in the sources that your search. In my recent legal hold validation [...]
Thanks to my friend Jason Velasco for drawing my attention to the article Hidden Dangers of Microsoft 365’s Power Automate and eDiscovery Tools. Hitesh Sheth at DarkReading.com is extrapolating from a massive data collection study from 4 million Cognito Detect for Office 365 customers by Vectra. I am not sure that I agree with his red flag alert that hackers are actively using Power [...]
One of my Litsupport team wearing the departmental t-shirts. Used with permission Blame Jonathan Maas for reminding me of my 5000:1 rule from the Enron email review. “For every 5,000 emails we review someone gets fired.” To put that rule in late 1990’s context, everyone having a corporate email account was still a relatively new thing. Just like the pandemic driven adoption [...]
In the days of on-site policy assessment engagements, I loved asking random attendees to step away from their laptops so that I could ‘compliance check’ them. For new or stuffy clients I would ask the MIS/Security stakeholder to pick some random ‘safe’ machines on the floor for the check. Inevitably, every poor admin chosen had stashes of PSTs/MSGs, private gmail mailboxes open, various chat [...]