Forum Discussion
Defender false positive on SharePoint links
We have an external business partner emailing SharePoint links for sensitive information. M365 Defender is consistently flagging the link as malicious with no clear indication as to why. So we get th...
An admin submission may work (and is the exam answer) but you should track and see if it actually results in an Allow entry in your tenancy TABL under the URLs tab. If it does not, you have ask Product Support to force the setting for you.
It looks as if Indicators are a Defender for Endpoint thing. Try that group.