SEP 12.1 RU1 New risk notification with nothing to report
I have searched through many posts on this forum and did not find one that mentions this exact issue...
I would like to know why some of the risk notifications we are reciving contain a blank body with the text: "Nothing to report." See below for one example. Generally, this notification contains the Client ID of the computer where the threat was detected under the "Network Threat Protection and Compliance Events" section. The administrator currently only has the one report setup to send email notifications to our group and until recently the notifications always contained this information.
The strange thing about these notifications is that the risks are mentioned nowhere in the logs or reports. There are not even any risks that were detected on the same day. I have run all of the risk reports and still see no mention of the risks mentioned in these notifications.
I would appreciate it if anyone knows 1. why the notifications are blank, and 2. If this requires any action on our part.
New risk found: Backdoor.ProxyBox.
Nothing to Report