MicrosoftI don't think Microsoft understands what "secure by default" means. It doesn't mean "set something and don't allow customers to change it". It means "when there are options, the default option should be the more secure choice". Not allowing customer to to have the same options for High Confidence Phish as there are for Spam, High Confidence Spam, and Phish is not "secure by default", it is unnecessarily limiting customers and very frustrating. We have never seen actual phishing messages classified as High Confidence Phish but we have seen plenty of legitimate messages categorized this way (many that don't even contain links or attachments or were sent directly from Microsoft). Please stop trying to change the meaning of "secure by default" and let paying customers make their own decisions.
