The Office Graph powers Microsoft 365 applications like Delve. Six years after Delve’s introduction, its privacy controls are being replaced by Microsoft Graph tenant settings from May 15, 2021. The changeover is important if your Office 365 tenant includes some people who have excluded themselves from document insights. You should take action to replace the old Office Delve controls with the Microsoft Graph privacy controls.
A new Exchange Online feature allows users to send email using any of the SMTP proxy addresses assigned to their mailbox. An Outlook update will make the task easier, but for now it’s reasonably straightforward to insert a proxy address into the From field when composing a new message with OWA or Outlook and send a message.
Organizations often disable Azure AD accounts when users leave or for other reasons. What you might not know is that Teams then removes the account from membership of individual teams. A background process looks for disabled users and removes these accounts from team memberships. That doesn’t sound too bad, but what’s horrible is when you unblock an account. Teams takes a long time (at least 24 hours) to restore standard teams, it might not ever restore membership of org-wide teams, and private channel membership is removed too. It’s not a good situation.
Microsoft has released security patches to address four new remote code vulnerabilities in Exchange 2013,2016, and 2019. At the same time, the FBI has removed web shells from compromised servers, but only in the U.S. Now more than ever it is essential that Exchange Server administrators apply all available patches and make sure that their servers have no lingering surprises left behind by attackers.
Exchange Online has a new domain expiring soon alert, which means that a mail flow insight checks for soon-to-expire domains in the set of accepted domains for a tenant. When the insight detects a domain due to expire within 90, 60, and 30-day windows, it sends a high-severity alert to the tenant administrators to tell them that they should renew the domain(s).