Forum Discussion
Phishing and Email Security
A user in our org was phished. We are making changes on swapping to phishing resistant MFA but what I am more concerned about is how Microsoft didn't catch the email with the malicious attachment. ...
We have this same issue. We have hundreds of obvious phishing emails being delivered to our users. Some of them contain dangerous links and attachments that go unblocked or are removed several minutes post delivery by ZAP. We use Defender and have the settings as aggressive as allowed. We're also looking for a 3rd party solution or anything to help. We tried KnowBe4 PhishER+ to manage our block list, but it was capped at 500 entries by Microsoft. We previously used Mimecast and it was great, but had to eliminate it due to the cost.
