o365 Security Threat Report

%3CLINGO-SUB%20id%3D%22lingo-sub-836001%22%20slang%3D%22en-US%22%3Eo365%20Security%20Threat%20Report%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-836001%22%20slang%3D%22en-US%22%3E%3CP%3EHi%20community!%20I'm%20currently%20looking%20at%20a%20Security%20Threat%20Report%20in%20the%20o365%20admin%20center.%3C%2FP%3E%3CP%3E%26nbsp%3BI'm%20just%20wondering%20how%20a%20mail%20qualifies%20to%20be%20listed%20under%20the%20%22Users%20Targeted%20by%20Malware%20Campaigns%22.%26nbsp%3B%3C%2FP%3E%3CP%3EThe%20active%20policy%20is%20the%20default%20policy%20that%20comes%20with%20the%20initial%20o365%20installation.%20Of%20course%20I%20can%20create%20a%20new%20policy%2C%20but%20how%20effective%20is%20that%20if%20I%20do%20not%20know%20why%20the%20previous%20mails%20were%20selected%20by%20the%20o365%20Exchange%20Security%3F%3C%2FP%3E%3CP%3EAny%20recommendations%3F%3C%2FP%3E%3C%2FLINGO-BODY%3E
Highlighted
Occasional Visitor

Hi community! I'm currently looking at a Security Threat Report in the o365 admin center.

 I'm just wondering how a mail qualifies to be listed under the "Users Targeted by Malware Campaigns". 

The active policy is the default policy that comes with the initial o365 installation. Of course I can create a new policy, but how effective is that if I do not know why the previous mails were selected by the o365 Exchange Security?

Any recommendations?

0 Replies