This detection identifies that an Application consented to significant privilege scope, creates suspicious inbox rule and produced a high volume of vital mail study actions by means of Graph API. TP: If you can confirm that inbox rule was developed by an OAuth 3rd-party app with suspicious scopes shipped https://aliceq776hyp5.blogitright.com/profile
