Jan 02 2020 01:08 AM - edited Jan 02 2020 01:13 AM
In the O-365 Security & Compliance center, Threat protection status report, I'm seeing lots of hits detected by Malicious URL reputation. However many (none?) of these emails are being bounced/quarantined/move to Spam, "I know there are the policy settings in Threat Management -> Policy. This enables control of anti-phishing, anti-spam, anti-malware, Quarantine and DKIM . But what links the Malicious URL Reputation to one of these?" (It's also interesting that in most situations it does not seem to be detecting a threat, but the conversations that are happening as a result of the threat, ex: all mails including original mails are going in Junk.)