Add URL warning to all emails

%3CLINGO-SUB%20id%3D%22lingo-sub-2244446%22%20slang%3D%22en-US%22%3EAdd%20URL%20warning%20to%20all%20internal%20emails%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2244446%22%20slang%3D%22en-US%22%3E%3CP%3EAt%20work%20here%20-%20after%20being%20hit%20with%20several%20phishing%20attempts...a%20couple%20of%20which%20were%20successful%20-%20the%20IT%20manager%20would%20like%20to%20add%20a%20warning%20to%20all%20emails%20that%20have%20a%20URL%20embedded%20in%20them%2C%20whether%20they%20originate%20from%20outside%20the%20organization%20or%20not.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EIs%20there%20any%20way%20to%20do%20this%20in%20O365.%26nbsp%3B%20We%20have%20already%20configured%20O365%20to%20add%20a%20warning%20to%20emails%20that%20originate%20outside%20our%20domain%2C%20but%20I%20don't%20see%20anything%20in%20the%20mail%20transport%20rules%20that%20specifically%20allows%20you%20to%20configure%20warnings%20in%20the%20email%20has%20a%20URL%20in%20it.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EIs%20this%20possible%20and%20what%20do%20I%20need%20to%20do%20to%20make%20it%20happen%3F%26nbsp%3B%20Is%20there%20a%20PowerShell%20command%20that%20will%20do%20what%20the%20Exchange%20Admin%20Center%20won't%3F%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-2244446%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3ECompliance%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EExchange%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EOffice%20365%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2244682%22%20slang%3D%22en-US%22%3ERe%3A%20Add%20URL%20warning%20to%20all%20emails%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2244682%22%20slang%3D%22en-US%22%3EHello%2C%20you%20should%20have%20a%20look%20at%20Safe%20links%20%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fmicrosoft-365%2Fsecurity%2Foffice-365-security%2Fsafe-links%3Fview%3Do365-worldwide%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ehttps%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fmicrosoft-365%2Fsecurity%2Foffice-365-security%2Fsafe-links%3Fview%3Do365-worldwide%3C%2FA%3E%3CBR%20%2F%3E%3CBR%20%2F%3EAlso%20see%20this%20article%20about%20EXO%20tagging%20%3CA%20href%3D%22https%3A%2F%2Foffice365itpros.com%2F2021%2F03%2F11%2Fexchange-online-external-email-tagging%2F%22%20target%3D%22_blank%22%20rel%3D%22nofollow%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Foffice365itpros.com%2F2021%2F03%2F11%2Fexchange-online-external-email-tagging%2F%3C%2FA%3E%3C%2FLINGO-BODY%3E
New Contributor

At work here - after being hit with several phishing attempts...a couple of which were successful - the IT manager would like to add a warning to all emails that have a URL embedded in them, whether they originate from outside the organization or not.

 

Is there any way to do this in O365.  We have already configured O365 to add a warning to emails that originate outside our domain, but I don't see anything in the mail transport rules that specifically allows you to configure warnings in the email has a URL in it.

 

Is this possible and what do I need to do to make it happen?  Is there a PowerShell command that will do what the Exchange Admin Center won't?

3 Replies
Safe links are your best bet here. In case you dont have the appropriate license to use them, you can try creating a Mail flow rule with a regex condition to detect any URLs in the body/subject of email, but that wont stop users from clicking them :)

@Graham1968 

 

Thanks both of you....I think you've pointed me in the right direction.  I'll need to dig a bit deeper on this to figure out how to configure it.