Forum Discussion
Phishing Detection in Microsoft Forms
TobiasAT According to the announcement in the Message Center, the detection is performed at design time. In my testing, it appears that as long as you do not try to edit a previously created Form, it will not be audited for phishing. Below is the specific language from the message center:
This new feature will be applied to all public forms (when forms setting is “Anyone with the link can respond”) created within your tenant. The automatic detection will be running at Forms design time and if any suspicious phishing contents (i.e. what’s your password?) are detected, the form will be automatically blocked for sharing and response collection. This would not be a permanent block as the form can be unblocked if the form designer removes the suspicious phishing question.
JeremyMiller We are facing an issue on the MS Forms (pertaining to this new detection). One of my operating staff accidentally click on the changes to the questions (instead of viewing the answers) and after I amend and correct the questions back to original questions. The Form is being flagged as potential phishing.
Had went into Go to the Message center and look for the notification, "Prevent/Fix: Microsoft Forms Detected Potential Phishing". There are no messages under this detected potential phishing. I am the administrator of the organisation but I am unable to have any options to either Delete/ Unblock/ Confirm Phishing.
Hence would like to seek your advise on what should we do to unblock this form under the new Phishing detection. Is there a way to opt-out to the new "Detection Potential Phishing"?
Jeremy3611 We are experiencing this same issue with a form. I do not see any message in our message center regarding the form to unblock it. Did you ever get yours fixed?
kevinduvallI just started seeing this happen today on a form that has been in production for months without issue. Did you ever get resolution to your issue?
GlennGomba we had a form do this as well today. Out of no where. It did not get a message in the Message Center.
Also, does anyone know if there is a way to see who has approved or denied a Phishing form? I could test and show the messages before all the changes, now, I haven't been able to push a message into the Message Center. Bad part is I can't pinpoint what specifically is broken to help a ticket if it was placed in.
