Schooling A Sea of Phish Part 2: Enhanced Anti-spoofing technology in Office 365

Yeah VasilMichev, agreed. I just happened to be in the middle of a transition to EOP/ATP from our onPrem (Barracuda) solution suddenly had an unexpected flurry of tools to review that I didn't know about :)

I'm having a little trouble with the UI and easy of use of the security and compliance center, especially with the new anti-spoof/phishing tools. Here a few questions after a couple of days of use:

• how do I get a simple message list (chronological) of all incoming/outgoing messages and their corresponding spam actions (block/junked/...) and reasons for the action?
• how do I review spoofed messages in detail? Sometimes I'm not sure if that spoof is really wanted or not, just by knowing the infrastructure and would need to see the full message know that. 
• I still haven't quite figured out (even after reading this) what I'm looking at when reviewing external domains that are trying to spoof our users.
• is there a reason why the anti-phishing policy is limited to 20 users and not the whole organization?