Jun 22 2017 10:32 PM
We receive lots of phishing mails and they are never ever blocked automatically.
Should EOP be capable of blocking (some of) them automatically or do we always have to manually add transport rules to try filtering those messages?
What is the best way to protect our users from these mails? I find it strange that even after a year similar phishing mails still aren't recignized and blocked automatically.
Unfortunately ATP is not an option financially.
Jun 22 2017 11:21 PM
Jun 23 2017 03:07 AM
Check out the Best practices for configuring EOP and make sure these are being adhered to. Also, have a look at the Implement Microsoft Exchange Online Protection presentation (from last year) for tips on spam/phishing prevention. For more background info check out Terry Zink: Security Talk he has a lot of good info, like Why does spam and phishing get through Office 365? And what can be done about it?, though not a recent article.
Before we moved to a third party email threat protection system, we found EOP to do a reasonable job at catching spam/phishing but the consistency wasn't always high enough.