Voicemails marked as EXTERNAL MESSAGES - Prevent Phishing but how?

Copper Contributor

Hi.

 

If we our any of our customers activate Voicemail within Teams, they get the following email:

 

2022-04-29 10_53_59-Posteingang - k.osthoff@osthoff.net - Outlook.png

 

Normal not technical well trained users will not open any attachements, because outlook says, that this email came from outside the organization.


Uff.

Only workaround is to use only the Teams client itself.

 

2022-04-29 10_52_48-.png

 

Okay. It seems a nice workaround, but not for any customer.

 

Any idea how i can disable the "outside organization"-Information ONLY for that VOICEMAIL from teams?

Kai.

6 Replies

@kai_osthoff 

 

Since the community has not yet responded to your post, you might want to contact Microsoft Support directly or open a case at answers.microsoft.com, where there are authorized Microsoft agents available to help with further troubleshoot with you until your issue is resolved. 

 

Since the community has not yet responded to your post, you might want to seek assistance with other resources that are focused on tech support:

 

  • Ask your IT manager to open a support case or call Microsoft using the support line you were given.  Other options for business subscription admins are listed here:

Get support | Microsoft Docs

https://support.serviceshub.microsoft.com/supportforbusiness/create

I too am alarmed by this.

 

In a world where we constantly remind staff of the potential dangers of external emails, why is a valid MS Teams email notification being marked as such.

 

Will log with MS Support, and share any useful response.

 

@kai_osthoff did you ever find a fix for this? 

@Glenn Coolong 

 

I ended up adding a bespoke transport rule which detects messages of type voicemail and pre-fixed a message on them.

 

I also raised as an enhancement request through unified support. 

 

Ben_pyett_0-1692447349254.png

 

@Ben_pyett thanks. Is there something in that (maybe what you blocked out) that narrows down the scope so that you know it's actually from Teams and not a phisher?

Afraid not that was merely organisation specific content and URLs.

 

What is annoying is that MS Spoof the email as if its come from the external number rather than use an easily detectable microsoft.com email domain - this is the point I raised with their support.

Although I've yet to see a "phish" email which has successfully flagged itself as type "Voicemail"

I've obviously seen the old classic - "You have new Voicemail" phish emails, which tend to come with attachments and dubious links.

Has anyone seen this type spoofed ?