Description: This detection identifies OAuth apps with people, such as Unicode or encoded characters, requested for suspicious consent scopes and that accessed users mail folders through the Graph API. TP: If you’re in the position to validate any unique info from SharePoint or OneDrive look for and collection accomplished through Graph API https://new-social-app-like-faceb81357.nico-wiki.com/1261076/the_2_minute_rule_for_new_social_apps
