https://live.paloaltonetworks.com/t5/cortex-xsoar-discussions/a-question-from-the-phishing-v3-webinar-o365-emails/m-p/508030#M1020 <P><SPAN>A reply by: &nbsp; </SPAN><a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/14127">@Tomerhaimof</a>&nbsp;<a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/191867">@ivandijk</a>&nbsp;</P> <P><SPAN>You should be able to use the SMIME integration to decrypt the email.</SPAN></P> Tue, 05 Jul 2022 22:25:04 GMT rtsedaka 2022-07-05T22:25:04Z https://live.paloaltonetworks.com/t5/cortex-xsoar-discussions/a-question-from-the-phishing-v3-webinar-o365-emails/m-p/508029#M1019 <P><SPAN>How do you recommend enriching/investigating encrypted emails in O365 that are only viewable to the intended recipient?</SPAN></P> <P>&nbsp;</P> <P><SPAN>Note: This question was asked during our <A href="https://live.paloaltonetworks.com/t5/customer-success-webinars/cortex-xsoar-customer-success-webinar-phishing-v3/ta-p/507448" target="_blank">Customer Success Webinar: Phishing V3</A></SPAN></P> Tue, 05 Jul 2022 22:24:16 GMT https://live.paloaltonetworks.com/t5/cortex-xsoar-discussions/a-question-from-the-phishing-v3-webinar-o365-emails/m-p/508029#M1019 rtsedaka 2022-07-05T22:24:16Z https://live.paloaltonetworks.com/t5/cortex-xsoar-discussions/a-question-from-the-phishing-v3-webinar-o365-emails/m-p/508030#M1020 <P><SPAN>A reply by: &nbsp; </SPAN><a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/14127">@Tomerhaimof</a>&nbsp;<a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/191867">@ivandijk</a>&nbsp;</P> <P><SPAN>You should be able to use the SMIME integration to decrypt the email.</SPAN></P> Tue, 05 Jul 2022 22:25:04 GMT https://live.paloaltonetworks.com/t5/cortex-xsoar-discussions/a-question-from-the-phishing-v3-webinar-o365-emails/m-p/508030#M1020 rtsedaka 2022-07-05T22:25:04Z