Forum Discussion
Advanced Threat Protection (ATP) is ruining Outlook.com
About a week ago, I noticed that all URLs were suddenly extremely long/obscure, and beginning with something like: https://nam02.safelinks.protection.outlook.com/?url=
It destroys the URL visibility experience.
I quickly realized that this was an Office 365 (E5) feature called ATP, but I'm not talking about Office 365 here but rather the consumer Outlook.com site.
I need to find out if we're going to be able to disable this, and when.
It's unbelievable that MS just foisted it on us, since it's not even in the vast majority of Office 365 plans! I realize that some people have been seeing it longer than one week.
- Glen TallarekBrass Contributor
It is terrible! I understand and appreciate the attempt to reduce the risk of phishing and malicious attacks, but they screwed up my primary method of avoiding them! Now, with the extra-long "safelinks.protection.outlook.com" link replacement, I don't feel safe clicking on any link! This is a major step backwards and a huge hindrance to my ability to determine if a message is legitimate (or a phishing attack) and if a link is safe or not. This "improvement" makes the product worse. Plus, it will probably cause more problems in the long run if it gives people a false sense of security that they will be protected if they click on a malicious link when (not "if") someone figures out how to imitate and hack the system so their malicious links look like the safe one. Unfortunately, this complaint will more than likely fall on deaf ears -- talking to Microsoft often is as effective as talking to a brick wall.
- Barry NelsonCopper Contributor
Talking to Microsoft is like talking to a brick wall? This is an insult to brick walls everywhere! How dare you!
- Paul HCopper ContributorDo not like!
I’m a user of Cisco SpamCop and any email I determine is spam/phishing gets reported.
This “safelink” appears in an email and I’m trying decipher if it is as safe as it appears to be, or not.
Even I, the suspicious careful checker, thought “this looks different but genuine”!!
Absolutely not. After working to see what the real email sender’s intended URL is, then I follow through with my usual redirect checks and find the final destination is another Canada Pharmacy site in a “.ru” domain,
How do we switch OFF this unhelpful “service” Microsoft? (I have a hotmail.com address and review my emails using the native Apple iOS mail app on my phone, and AltaMail to get at the mail headers)
- Glen TallarekBrass Contributor
Are we supposed to assume that Microsoft will GUARANTEE that ALL the URL links that they replace with their " https://nam02.safelinks.protection.outlook.com/?url=" are SAFE for me to click on? If that is not the case, then Microsoft has made things worse. I want to see some official documentation from Microsoft that says Microsoft certifies and guarantees that the URL links that they replace are 100% safe (now and in the future). Again, Microsoft is a rude company for changing something so important without any kind of notification or opt-out capability.
- Cian AllnerSilver Contributor
You can opt-out of this per the info I posted earlier if it's really too much and then you won't get these types of links anymore.
Bear in mind this is a feature that's been around for years on the commercial side of Office 365, that's very much trusted. I know the links look a bit odd and it may seem strange but this is adding a level of protection that only comes with the top of the range Enterprise edition of Office 365 and will keep customers, now including consumers better protected from cyber-threats.
- Robert WoodsSteel Contributor
Lol...
- Tony WoodCopper Contributor
Absolutely agree that this has completely stuffed up my outlook. I run a hotmail.com account and a work Office 365 account and all this has done has driven me to gmail (maybe that was the idea).
Height of arrogance to turn this on with no ability to turn it off. e.g. I cant click on a facebook, linkedin link.
Please turn it off.
Tony
- Tony WoodCopper ContributorIn fact I get no warning message to make a decision. This is what I get back
This page can’t be displayed
•Make sure the web address https://nam02.safelinks.protection.outlook.com is correct.
•Look for the page with your search engine.
•Refresh the page in a few minutes.- Peter Gorton UKCopper Contributor
This ATP facility has blocked EVERY link in my hotmail accounts. The only way around it is to remove from the Browser adddress the Microsoft ATP prefix code.....up to the HTTP:// point where your web address starts. in other words, REMOVE ...https://nam02.safelinks.protection.outlook.com/
- Jeff MilneBrass Contributor
I'm still waiting for a method to disable this abject failure of Outlook/Office 365 "ATP". It obfuscates links in all emails - making it impossible for me to evaluate the trustworthiness of a link, while preventing me from navigating to legitimate and necessary web sites! I have a SIGNIFICANT amount of time invested in this product and a LOT of data under its management. My frustration level is rising to an unprecedented level over something very easy for Microsoft to fix!
Out of nowhere - Microsoft decided to completely change the operational model of interaction with links in emails and released it without providing users with a way to disable this "feature" if it causes them usability problems - like in my case - where it has completely hobbled my ability to navigate to needed web sites!!!
Microsoft...!!! Come on... wake up and listen to totally valid and reasonable requests to allow long-time paying customers of this product to undo this mess you foisted on us... please!
Respectfully,
Jeff TX
- Cian AllnerSilver Contributor
This is now confirmed in today's announcement- Premium Outlook.com features now available to Office 365 subscribers:
For Office 365 Home and Office 365 Personal subscribers, we now offer additional security against the most sophisticated types of threats in two ways:
- Scanning attachments—Sophisticated techniques detect new types of malware previously not seen, giving you protection against today’s most advanced threats.
- Checking links—When you click a link in an email, it is checked in real-time to determine if the destination website is likely to download viruses or malware onto your computer. If the site is found to be malicious, a warning screen alerts you not to access the site.
- lee fletcherCopper Contributor
Cian Allner wrote:
This is now confirmed in today's announcement- Premium Outlook.com features now available to Office 365 subscribers:
For Office 365 Home and Office 365 Personal subscribers, we now offer additional security against the most sophisticated types of threats in two ways:
- Scanning attachments—Sophisticated techniques detect new types of malware previously not seen, giving you protection against today’s most advanced threats.
- Checking links—When you click a link in an email, it is checked in real-time to determine if the destination website is likely to download viruses or malware onto your computer. If the site is found to be malicious, a warning screen alerts you not to access the site.
Cian Allner wrote:
This is now confirmed in today's announcement- Premium Outlook.com features now available to Office 365 subscribers:
For Office 365 Home and Office 365 Personal subscribers, we now offer additional security against the most sophisticated types of threats in two ways:
- Scanning attachments—Sophisticated techniques detect new types of malware previously not seen, giving you protection against today’s most advanced threats.
- Checking links—When you click a link in an email, it is checked in real-time to determine if the destination website is likely to download viruses or malware onto your computer. If the site is found to be malicious, a warning screen alerts you not to access the site.
i want to disable the new sec urity features.i cannot access some job invoices which i have to complete
- AlterEg0Copper ContributorHi all
In work we have a big problem with this now effecting 70 thousand employees.
Problem is that when you copy a link from a hyperlink and paste into word or excel or any other file or document. The link becomes unusable for anyone else accept the user who added it to the document.
The safelink has encryption within it to allows the experts to be able trace back the hyperlink if it leaves the work environment or if required to see who over time as spread the link. But by doing this hyperlinks have now become redundant. As the only way now around this is to each time just post the full link to the page or document and not use hyperlink. This is a pain un the arse. Delaying and preventing work being done. It will mean that business will stop using outlook and instead move to other forms if this continues. Please resolve this. This is a big problem that Microsoft are ignoring. Its causing a lot of issues and rework costing hi sums of wasted money from wasted time.
Regards - Jan_collier_73Copper Contributor
Every Link in my hotmail.com will not open and gives me a nam10. safelinks. protection.outlook.com
- Cian AllnerSilver Contributor
To add here is the page with more details - Advanced Outlook.com security for premium subscribers. The included FAQ says this about disabling these features and it also confirms the behaviour you are seeing:
Can I deactivate these security features?
To provide the best protection for your account, these features are on by default and not designed to be turned off. You can contact our customer service team via in-product support to have them deactivate the features on your behalf, but we do not recommend it.
Why do links in my messages look different?
After you activate the advanced security features, links in your email might look different. For example, in some messages links might appear longer than usual, and include text such as "na01.safelinks.protection.outlook.com." This is related to the checks we perform to protect you from phishing attacks.
- Tom ElfersCopper Contributor
"You can contact our customer service team via in-product support to have them deactivate the features on your behalf, but we do not recommend it."
How do I do that?
- Michael SmithCopper Contributor
Please tell me how to contact them as I have tried every possible way I know and it always renders a chat option to which I click and the chat box just spins then gives same CV:xxx error code each time. This new way of changing my links has become horrid for my end users and clients as a simple www.mikesprotech. com link even in my email signature looks horrid not to mention as an IT Admin this is teaching users bad habits of simply trusting long links which resemble the ones Microsoft creates. Most people are not going to analyze the link closely enough nor may not know how or what all to look for.
If anything, Microsoft can examine the link and simply put a trust mark or something beside the ORIGINAL link rather than have an email with several links all garbled up looking not to mention how this service is going to affect links in emails which are stored in backups then accessed months/years later.
PLEASE PLEASE PLEASE give me a link or information on how to contact Microsoft to have this disabled.
Thanks for your sharing of information on the chat board.
It is the most useful Ive found online so far.
- Robert WoodsSteel Contributor
Are you on Office 365? This is on the roadmap, and most likely coming to consumer Outlook also.
Removal of Safe Links Re-write for Outlook Client(s)
For users using Outlook, Safe Links will render the original URL and not show the re-written URL. This will enable users to view the original link that arrives in an email.Estimated Release: Q4 CY2018Feature ID: 16401Added to Roadmap: 09/01/2017Last modified : 03/24/2018
- AuroranCopper ContributorThis wrapping of hyperlinks fails every time (as of 1/29/2019). If you can't fix this IMMEDIATELY, you need to turn it off.
- Cian AllnerSilver Contributor
If it's producing 503 errors when opening one of these links, this is a service incident that's being worked on and should soon be resolved.
- Ivan BehrCopper Contributor
Besides obscuring the url, these extra long links get broken on my Android device, so when I click on the link I get a page error. It forces me to use my laptop instead of my mobile.
But wait! there is another solution.
I am switching back to making Gmail my primary email account.
Ah yes, sanity has been restored. Once again I can see the link, I can click on it, and it opens on my phone without waiting forever, and getting a broken page link.
Microsoft, give me the power to decide please. I want to choose what happens to my links.
Brian Fumo wrote:
About a week ago, I noticed that all URLs were suddenly extremely long/obscure, and beginning with something like: https://nam02.safelinks.protection.outlook.com/?url=
It destroys the URL visibility experience.
I quickly realized that this was an Office 365 (E5) feature called ATP, but I'm not talking about Office 365 here but rather the consumer Outlook.com site.
I need to find out if we're going to be able to disable this, and when.
It's unbelievable that MS just foisted it on us, since it's not even in the vast majority of Office 365 plans! I realize that some people have been seeing it longer than one week.
- Juan ChristianCopper ContributorExactly, Microsoft's Safe Link technology is plain simple a bad approach to phishing. Whoever thought this was a good idea is an imbe#@%@ and should not be put as a decision maker regarding mail security. This should be opt-in and with a fast and easy way to enable/disable.
- Alan HalfacreCopper Contributor
Wished I had not got up this morning.
Office 365 Home user.
Any link from an email in Outlook now gives me:
Can’t connect securely to this page
This might be because the site uses outdated or unsafe TLS security settings. If this keeps happening, try contacting the website’s owner.
Can directly connect to the relevant page without problem - using edge - how do I fix this 'new feature' of ATP?
- Alan HalfacreCopper Contributor
Fixed it - I hope.
Changed the default browser to IE and problem went away.
Changed default back to Edge and did not return.
URL now changed, goes to safelinks etc and then switches to normal url.
Back to the rest of the day.
- John SlipCopper Contributor
I DO NOT WANT ATP ON MY SYSTEM - I CAN GET NO ACCESS TO PREVIOUSLY BONA FIDE Http, i.e. internet weblinks. CAN SOMEBODY PLEASE ADVISE AS TO HOW I CAN EITHER REMOVE, OR NEAUTRALISE, ATP