May 20 2020 12:43 AM
Dear Community,
we have implemented an Exchange rule, which sends messages into approval if the sender uses our domain but is outside of the organization - basically spoofing protection. This works as expected.
When we receive messages, which were spoofed, we have the possibility to Accept or Reject them. Most of the messages are rejected, only a few are accepted. When we reject a message a response is sent to the spoofed email address which causes confusion, because the rejection response is sent to a user inside of our organization.
Is there some approach to prevent rejection message to be sent to users inside of the organization?
May 20 2020 06:21 AM
Hi, it would be helpful if you could share a screenshot of the transport rule you have configured please?
Thank you.
May 20 2020 09:05 AM
Thank you for your response - sure, good point; screenshot included below. Now, when we receive phishing from spoofed senders and I reject them, the rejection message is sent to the person inside our organization.
May 20 2020 11:35 AM
OK, and the rejection message comes from an email address along the lines of the below right?
May 22 2020 05:13 AM
Yes, looks pretty much like it. Should I just block those emails, or redirect them to myself?
May 22 2020 07:19 AM - edited May 22 2020 07:20 AM
I would be hesitant to block them, but if they are causing annoyance then maybe forward them to your mailbox as you suggest. Maybe do another transport rule to forward to you along the lines of the below and include the word Rejected: