From mid-August 2023, Exchange Online will enforce the action defined in the sender DMARC policy for inbound messages detected as spoof (by spoof intelligence). Tenants have the chance to amend their anti-phishing policy to decide what to do with these messages. I favor an outright rejection.
This article reviews using advanced message tracking to identify Junk-Mail and Spoof Messages through tools like Exchange Message Trace, Threat Explorer, Message Header Analyzer, and Advanced Hunting.
The email quarantine process is as old as email itself, and still an essential part of any email service. As far as Office 365 is concerned, Exchange Online is a world-class product and the quarantine mechanism works well, however, the current iteration of the Quarantine portal falls short in user experience and performance.
Steve Goodman writes on how you can use Authentication Policies in Exchange Online for blocking Basic Authentication in your Exchange Online tenant.
Microsoft has improved the phishing and impersonation detection capabilities of Exchange Online Protection and Office 365 Advanced Threat Protection with anti-phishing policies.
As Microsoft invests in development of the Security and Compliance Center, some inconsistencies and annoyances have crept in to Exchange Online Protection administration.
A curious case of legitimate Azure Active Directory Identity Protection weekly digest emails being quarantined by Exchange Online Protection when international spam filtering is enabled.
A walk-through of configuring Exchange Online Protection to prevent malware and email spam in an Office 365 tenant.
How does the Dynamic Delivery feature of Exchange Online Protection Advanced Threat Protection (ATP) impact customers who use journaling for email compliance and archiving.
In this episode of the Exchange Server Pro Podcast my guests Brian Reid and Michael Van Horenbeeck discuss Exchange Online Protection vs 3rd party antispam.
Email messages may be found in the Junk Email folder of Outlook with a message that fraud detection checks failed, warning that the message may be spoofed.
Here's my experience using the Advanced Threat Protection features in Exchange Online Protection to protect my Office 365 tenant.
