Using ATP anti phishing polices to protect our CEO/CFO/COO.
When an email comes from display names that have alternate spellings of the name ATP Anti Phishing is failing to quarantine the messages.
Example - spoof of Matt.Ceo@fakedomain.com <Matt CEO> will get quarantined.
Spoof of same user: email@example.com <Matthew CEO> will be delivered to inbox.
Any way to make it better?