Google is ramping up the G Suite with new security alerts designed to notify administrators of Gmail phishing attacks and intruders' data exfiltration processes.
Only admins are affected by the G Suite changes, which also include a new alert deletion option and a link to audit logs for G Suite Business and Basic domains, Google explains in a blog post, according to the company. Phishing alerts will generate notifications for suspicious looking emails in Gmail inboxes; admins in G Suite Enterprise domains can investigate them and, if necessary, remove bulk messages.
The "data export initiated" alert comes in when a domain data export begins, and is designed to help notify admins of potentially malicious activity. Admins can also delete alerts as they are resolved or are no longer needed. Audit logs provide data on past user activity related to alerts.
Users need to be a super admin or alert center-delegated admin to use G Suite's alert center, which serves as a single place for admins to view security-related notifications, alerts, and actions across G Suite. Admins can access the alert center by going to Admin console > Menu > Security > Alert Center, and access the Help Center to learn more about the tool.
Read more details here.