This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question

Google Workspace Logging - Email Attachment Name

Posted on 11-30-2022 03:15 AM
PaulH_uk
Bronze 2
Bronze 2
Reply posted on --/--/---- --:-- AM

Hi,

As part of security monitoring and response, I'd like to be able to identify the attachment name using the logs from Google Workspace. Within Google Admin Investigation tool the attachment name is displayed, but it does not appear to be included in log files we export to our SIEM. I therefore have to pivot between tools rather than automate response from my security tooling.

Is this something that is simply missing from the logging and something we need to request from Google? Or is it a local configuration problem my-end?

It would be very useful to identify mass email spam campaigns, identify malicious attachments and/or business data/files too.

Thanks!

Solved Solved
0 7 993
Topic Labels
Jump to Solution
0 Likes
1 ACCEPTED SOLUTION

Posted on --/--/---- --:-- AM
PaulH_uk
Bronze 2
Bronze 2
In response to cryptochrome
Reply posted on --/--/---- --:-- AM

Thank you!

I don't have permission to raise a support case, so will have to defer to the IT team internally.

View solution in original post

Jump to Solution
7 REPLIES 7
Top Labels in this Space