How would you handle a situation where automated detection missed a sophisticated threat at T-Mobile?