Internal Spam e-mails
We are experiencing spam e-mails spreading internally. There's a malware that poses as sender\ user forwarding those e-mails to internal users. The risk log only indicate tracking cookieswhich have been successfully deleted. This affecting half the organization.
I know viruses like mabezat causes this behaviour however not trail of such. I needed to get the virus causing this so that i can block it from executing it self and removeits instances through application and device control