Feature request - Find overly permissive calendars #41
Description
just had a request to change my main work calendar (o356) to give full read access (view all details) to 'my organization'. I of course denied and followed up with the origin of the request but this might be happening at other orgs too without anyone questioning it
would you consider adding a calendar check to graph running? similar to what we have for open mailboxes?
so it like flags all ms accounts in your org that have setting that are MORE permissive than 'can view when busy'
accessing employee calendars after compromising a o365 account can lead to cooperate espionage, security fraud, etc.