Microsoft is adding a new Automated Incident Response playbook to Office 365 Advanced Threat Protection (ATP) to allow Security Operations (SecOps) teams to automatically investigate and remediate hacked accounts. The playbook is designed to make it easier for security departments to go through the huge amounts of alerts received daily with the help of security playbooks. Microsoft is also rolling out better manual threat hunting features for the Office 365 Threat Explorer, with the feature to be released in October. Microsoft also plans to enhance the quarantined malware and phishing email notification system for Microsoft 365 admins.
Source: https://www.bleepingcomputer.com/news/microsoft/office-365-to-get-automated-incident-response-for-hacked-accounts/