What's New
Centralized Visibility for Cloud Email & Collaboration Security
(implemented for data from Cloud Email & Collaboration Security and Cloud Email Gateway Protection)
(On Vision One console > Email and Collaboration Security > Configuration and Operations > Overview)
TrendAI Vision One™ Email and Collaboration Security Detection Insights surfaces your organization's highest-priority security risks in a single, unified dashboard. It delivers an AI-generated narrative summary of top attack patterns, so your team can instantly understand the threat landscape without manually analyzing raw data. The feature proactively identifies at-risk users by ranking them against account takeover and targeted attack risks, helping you focus on the people who matter most. Detected threats are broken down by type, including BEC, Phishing, Ransomware, Malicious Files, and Spam, enabling faster, priority-driven response decisions. Together, these capabilities give security teams a clear answer to who is being attacked, by what, and how severely — all in real time.
Centralized Quarantine Email Management Operation Portal
(implemented for data from Cloud Email & Collaboration Security and Cloud Email Gateway Protection)
(On Vision One console > Email and Collaboration Security > Configuration and Operations > Email Security Operations)
Streamlined Quarantine Management consolidates all suspicious email signals into a single investigation workspace, eliminating the need to switch between tools. AI-powered semantic analysis evaluates email intent and scores threat dimensions, enabling security teams to assess risk faster and with greater confidence. Analysts can take direct action, such as releasing, deleting, or escalating emails, without ever leaving the investigation flow. A user social graph visualization is available on request. It maps the potential blast radius of a targeted attack, helping teams understand who else in the organization may be at risk. Together, these capabilities transform quarantine management from a reactive chore into a guided, intelligence-driven investigation experience.
Misdirected Mail Detection
(implemented for both "Cloud Email and Collaboration Protection" and "TrendAI™ Cloud App Security")
(On Vision One console > Email and Collaboration Security > Cloud Email and Collaboration Protection > Policies > Global Settings > Exchange Online API Protection settings)
(On Trend AI Cloud App Security console > Policies > Global Settings > Exchange Online API Protection settings)
Misdirected Mail Detection protects organizations from accidental data exposure by intelligently intercepting emails before they reach the wrong recipient. The system automatically analyzes outgoing emails against historical communication patterns and mail content to identify potential misdirection in real time. When a risk is detected, the end user is immediately prompted to review or revise the email before it is sent, putting a critical safety net directly in the hands of the sender. This proactive, user-in-the-loop approach minimizes the risk of sensitive information being accidentally shared with unintended recipients, without disrupting normal email workflows. This function is currently not available for the MEA site due to regional infrastructure limitations. For other sites, we will provide the functionality.
Outlook Add-in AskAI
(implemented for both "Cloud Email and Collaboration Protection" and "TrendAI™ Cloud App Security")
(On Vision One console > Email and Collaboration Security > Cloud Email and Collaboration Protection > Administration > Add-in Management > AI Chat Permissions and feature can be enabled on customer request)
(On Trend AI Cloud App Security console > Administration > Add-in Management > AI Chat Permissions and feature can be enabled on customer request)
AskAI in Outlook Add-in empowers end users to take an active role in email security without leaving their inbox. Administrators can flexibly control whether end users have access to AskAI, ensuring the feature is rolled out in alignment with organizational policies. Once enabled, users can instantly analyze suspicious emails using AI-powered insights and submit phishing or spam reports directly within a conversational chat interface. This seamless integration reduces friction in the reporting process, encouraging faster user response and improving overall organizational threat visibility.
Note: This feature requires Outlook Add-in version 0.1.295 and is available upon customer request.
Companion Supports Email Risky User Query
(implemented for data from Cloud Email & Collaboration Security and Cloud Email Gateway Protection)
(On Vision One console > Email and Collaboration Security > Configuration and Operations > Overview, then click the companion icon in the upper right)
AI-Driven Email Security Insights in TrendAI Vision One™ Companion brings intelligent threat analysis directly into the admin's conversational workflow. Email administrators can instantly surface top risky users, receive AI-driven risk analysis, and get guided mitigation action support, all without navigating away from Companion. The feature also identifies users who have clicked on suspicious URLs in emails, providing critical early visibility into potential compromise. From there, Companion guides administrators step-by-step through further investigation and response tasks, turning complex security workflows into a streamlined, chat-driven experience.
Auto Collect Reported Emails from Mailboxes
(exclusively for "Cloud Email and Collaboration Protection")
(On Vision One console > Email and Collaboration Security > Cloud Email and Collaboration Protection > Administration > Email reporting > Report to TrendAI™ >Auto collect from mailboxes )
Automated Reported Email Collection streamlines the process of gathering user-reported suspicious emails by automatically pulling submissions from designated reporting mailboxes. This expands beyond the existing Outlook add-in, giving organizations greater flexibility in how end users report threats. By eliminating manual collection efforts, security teams can focus on investigation and response rather than administrative overhead. This feature also enables seamless integration with third-party email reporting tools, ensuring a smooth fit into existing security workflows and ecosystems.
Deployment Scope
This deployment applies to all TrendAI Vision One™ Cloud Email and Collaboration Protection and TrendAI™ Cloud App Security data centers.
| Sites | Date / Time | Time Zone |
|---|---|---|
| SG / ANZ / CA | June 22, 2026 10:00 AM to June 22, 2026 07:00 PM | UTC + 8 |
| IN / UK / JP / ZA | June 23, 2026 10:00 AM to June 23, 2026 07:00 PM | UTC + 8 |
| EU / US | June 24, 2026 10:00 AM to June 24, 2026 07:00 PM | UTC + 8 |
Service Downtime: N/A
Customer Impact: No impact on current mail flow for all existing customers and configurations.
