Microsoft
Microsoft
MicrosoftWe have security awareness and it is up to the security team on how they want to educate their end users.
Reiterating what was stated above, Microsoft's built-in Report button is a split button. Clicking on the button without using the dropdown list reports the message as phishing. Use the dropdown list to report messages as junk or not junk. So, Users can do specific reporting or just report it if they want.
Correct, they decide how to train the organization and distinguishing between junk and phish, from an end user perspective doesn't help with that. In addition, as far as I know, it makes no difference to MDO; no SOC should rely on end user verdict, but always verify and determine whether the report is junk or phishing or something else.
I think I made point, I don't see real value on distinguishing junk and phishing when reporting, https://learn.microsoft.com/en-us/defender-office-365/submissions-outlook-report-messages#use-the-built-in-report-button-in-outlook-to-report-junk-and-phishing-messages, nor a reason for demanding it from third-party integrations in order to correctly integrate it.
BTW, I do appreciate the ability to now be able to submit to Microsoft for analysis when using third-party button.
Thanks!
