Outgoing emails falsely marked as SPAM / Phishing emails by Outlook servers

%3CLINGO-SUB%20id%3D%22lingo-sub-3035201%22%20slang%3D%22en-US%22%3EOutgoing%20emails%20falsely%20marked%20as%20SPAM%20%2F%20Phishing%20emails%20by%20Outlook%20servers%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3035201%22%20slang%3D%22en-US%22%3E%3CP%3E%3CSPAN%3ESince%2010%2F26%2F21%20our%20organization%20has%20been%20experiencing%20widespread%20email%20deliverability%20issues%20with%20Microsoft%20%2F%20Outlook%20clients.%20These%20are%20legitimate%20%2F%20wanted%20emails%20sent%20to%20opted-in%20users%20-%20existing%20clients%20who%20are%20expecting%20our%20emails.%20These%20emails%20are%20falsely%20being%20quarantined%20%2F%20sent%20to%20spam%2C%20or%20even%20rejected%20in%20some%20cases%2C%20specifically%20by%20Microsoft%20365%20%2F%20Outlook%20receiving%20servers.%26nbsp%3B%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%3CBR%20%2F%3E%3CSPAN%3EWe've%20been%20thoroughly%20testing%20for%20the%20past%206%20weeks%20and%20it%20appears%20to%20be%20specific%20to%20our%20domain%20and%20not%20related%20to%20our%20email%20sending%20platforms%20or%20IPs.%20This%20issue%20has%20been%20persisting%20across%20our%20entire%20organization.%20Our%20DKIM%20%2F%20SPF%20records%20are%20all%20implemented%20correctly.%20We're%20using%20Dmarcian%2C%20HetrixTools%20to%20monitor%20%2F%20confirm%20these%20DNS%20settings.%20We%20have%20also%20retained%20two%20email%20deliverability%20consultants%2C%20who%20have%20checked%20our%20domain%20settings.%20They've%20also%20confirmed%20that%20they%20believe%20this%20is%20an%20internal%20false%20flag%20on%20Microsoft's%20side.%26nbsp%3B%3C%2FSPAN%3E%3CBR%20%2F%3E%3CBR%20%2F%3E%3CSPAN%3EFor%20the%20past%206%20weeks%2C%20we%20have%20been%20in%20touch%20with%20Outlook%20Deliverability%20Team%20and%20countless%20support%20staff.%20The%20issue%20has%20been%20escalated%20and%20we%20have%20provided%20them%20with%20email%20samples%20of%20quarantined%20%2F%20rejected%20email%20headers%2C%20but%20still%20the%20issue%20remains%20prevalent%26nbsp%3Band%20unresolved.%20This%20issue%20is%20severely%20impacting%20our%20business%2C%20as%20our%20clients%20are%20unable%20to%20receive%20emails%20%2F%20work%20product%20for%20which%20they%20have%20already%20paid.%3C%2FSPAN%3E%3CBR%20%2F%3E%3CBR%20%2F%3E%3CSPAN%3EWe%20are%20desperate%20and%20seeking%20assistance%20%2F%20guidance%20from%20someone%20on%20the%20Microsoft%20Outlook%20Team%2C%20who%20can%20kindly%20escalate%20this%20issue%2C%20and%20advise%20us%20on%20next%20steps%20to%20delist%20our%20domain%20from%20their%20internal%20blacklists.%20Again%2C%20this%20issue%20is%20impacting%20existing%20client%20relationships.%20Clients%20who%20are%20not%20receiving%20wanted%20emails%20in%20order%20to%20conduct%20business.%3C%2FSPAN%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-3035201%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EExchange%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EOffice%20365%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EOutlook%20Customer%20Manager%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EOutlook%20for%20Mac%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EOutlook%20for%20Windows%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EOutlook%20on%20the%20web%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3038289%22%20slang%3D%22en-US%22%3ERe%3A%20Outgoing%20emails%20falsely%20marked%20as%20SPAM%20%2F%20Phishing%20emails%20by%20Outlook%20servers%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3038289%22%20slang%3D%22en-US%22%3EThanks%20again%2C%20but%20unfortunately%20this%20also%20does%20not%20apply.%20Because%20we%20are%20using%20Shared%20IPs%20from%20services%20like%20Gmail%2C%20Hubspot%2C%20or%20SendGrid.%20We've%20also%20determined%20that%20the%20issue%20is%20not%20IP%20related%2C%20but%20domain%20related.%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3035428%22%20slang%3D%22en-US%22%3ERe%3A%20Outgoing%20emails%20falsely%20marked%20as%20SPAM%20%2F%20Phishing%20emails%20by%20Outlook%20servers%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3035428%22%20slang%3D%22en-US%22%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fmicrosoft-365%2Fsecurity%2Foffice-365-security%2Fuse-the-delist-portal-to-remove-yourself-from-the-office-365-blocked-senders-lis%3Fview%3Do365-worldwide%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ehttps%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fmicrosoft-365%2Fsecurity%2Foffice-365-security%2Fuse-the-delist-portal-to-remove-yourself-from-the-office-365-blocked-senders-lis%3Fview%3Do365-worldwide%3C%2FA%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3035427%22%20slang%3D%22en-US%22%3ERe%3A%20Outgoing%20emails%20falsely%20marked%20as%20SPAM%20%2F%20Phishing%20emails%20by%20Outlook%20servers%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3035427%22%20slang%3D%22en-US%22%3EThanks%20for%20the%20reply.%20But%20unfortunately%2C%20none%20of%20these%20resources%20are%20necessarily%20relevant%20to%20our%20issue.%20We%20are%20the%20sending%20domain%2C%20not%20the%20receiving%20domain.%3CBR%20%2F%3E%3CBR%20%2F%3EIt%20is%20our%20end%20user%20clients%20who%20are%20using%20Outlook%20and%20unable%20to%20receive%20emails%20from%20us%20containing%20work%20product.%20These%20are%20legitimate%20%2F%20wanted%20emails%20that%20are%20falsely%20being%20flagged%20as%20spam%20by%20their%20Outlook%20client%20inboxes.%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3035415%22%20slang%3D%22en-US%22%3ERe%3A%20Outgoing%20emails%20falsely%20marked%20as%20SPAM%20%2F%20Phishing%20emails%20by%20Outlook%20servers%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3035415%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F1244804%22%20target%3D%22_blank%22%3E%40ExpertInstitute%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%3CP%3EHello%2C%20this%20documentation%20should%20be%20helpful%3C%2FP%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fmicrosoft-365%2Fsecurity%2Foffice-365-security%2Freport-false-positives-and-false-negatives%3Fview%3Do365-worldwide%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EReport%20false%20positives%20and%20false%20negatives%20in%20Outlook%20-%20Office%20365%20%7C%20Microsoft%20Docs%3C%2FA%3E%3C%2FP%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fmicrosoft-365%2Fsecurity%2Foffice-365-security%2Fmanage-tenant-allows%3Fview%3Do365-worldwide%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EManage%20your%20allows%20in%20the%20Tenant%20Allow%2FBlock%20List%20-%20Office%20365%20%7C%20Microsoft%20Docs%3C%2FA%3E%3C%2FP%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fmicrosoft-365%2Fsecurity%2Foffice-365-security%2Freport-junk-email-messages-to-microsoft%3Fview%3Do365-worldwide%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EReport%20spam%2C%20non-spam%2C%20and%20phishing%20messages%20to%20Microsoft%20-%20Office%20365%20%7C%20Microsoft%20Docs%3C%2FA%3E%3C%2FP%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fexchange%2Fmail-flow-best-practices%2Fmanage-accepted-domains%2Fmanage-accepted-domains%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EManage%20accepted%20domains%20in%20Exchange%20Online%20%7C%20Microsoft%20Docs%3C%2FA%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E
Occasional Contributor

Since 10/26/21 our organization has been experiencing widespread email deliverability issues with Microsoft / Outlook clients. These are legitimate / wanted emails sent to opted-in users - existing clients who are expecting our emails. These emails are falsely being quarantined / sent to spam, or even rejected in some cases, specifically by Microsoft 365 / Outlook receiving servers. 


We've been thoroughly testing for the past 6 weeks and it appears to be specific to our domain and not related to our email sending platforms or IPs. This issue has been persisting across our entire organization. Our DKIM / SPF records are all implemented correctly. We're using Dmarcian, HetrixTools to monitor / confirm these DNS settings. We have also retained two email deliverability consultants, who have checked our domain settings. They've also confirmed that they believe this is an internal false flag on Microsoft's side. 

For the past 6 weeks, we have been in touch with Outlook Deliverability Team and countless support staff. The issue has been escalated and we have provided them with email samples of quarantined / rejected email headers, but still the issue remains prevalent and unresolved. This issue is severely impacting our business, as our clients are unable to receive emails / work product for which they have already paid.

We are desperate and seeking assistance / guidance from someone on the Microsoft Outlook Team, who can kindly escalate this issue, and advise us on next steps to delist our domain from their internal blacklists. Again, this issue is impacting existing client relationships. Clients who are not receiving wanted emails in order to conduct business.

4 Replies
Thanks for the reply. But unfortunately, none of these resources are necessarily relevant to our issue. We are the sending domain, not the receiving domain.

It is our end user clients who are using Outlook and unable to receive emails from us containing work product. These are legitimate / wanted emails that are falsely being flagged as spam by their Outlook client inboxes.
Thanks again, but unfortunately this also does not apply. Because we are using Shared IPs from services like Gmail, Hubspot, or SendGrid. We've also determined that the issue is not IP related, but domain related.