Hi Andy,
Thanks for your informative response, it's truly valuable. I've investigated the roadmap you've shared, and I'm excited to see Graph getting this functionality. It seems it will provide a very programmatically friendly way to handle these kinds of tasks in the future. However, for the time being, it seems I'll have to resort to other means, and your suggestion about the SCC PowerShell module looks interesting.
Speaking of the SCC PowerShell module, I had a few queries regarding its functionality. You mentioned that it could be used as an alternative for hard deleting emails on an Exchange Server. Considering the vast number of emails and mailboxes we might need to manage, especially during an incident like phishing, I'm wondering about a few things:
- Does the SCC PowerShell module provide an option to search across all mailboxes? Will it be possible to execute such a comprehensive search?
- When it comes to deleting emails, is there a cap or limit on the number of emails the SCC PowerShell module can hard delete? In case the phishing email was sent to a substantial number of mailboxes, we might end up with a situation where we must delete a large volume of emails.
Also, is there a way to control or specify the deletion to make it a 'Hard Delete'? As you probably know, in phishing incidents it's crucial that we not only delete the email from the user's inbox but also ensure it's removed from the 'Deleted Items' folder to prevent any accidental clicks.
I believe your expertise and guidance could provide more insight into how effectively the SCC PowerShell module can serve in such situations.
Thank you once again for your time and assistance. I'm looking forward to your response.