cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

O365 OWA keep getting phishing emails + addressed from our email address

NGCAUK
Copper Contributor

‎Jun 11 2021 03:22 AM

‎Jun 11 2021 03:22 AM

O365 OWA keep getting phishing emails + addressed from our email address

Working in a volunteer place and the inbox keeps getting spammed by messages that are addressed as sent from our email address. 2 Types of Phishing emails are being sent to our inbox.

 

1: btconnect your bill is ready click this link. Sent from "ourvolunteerplace@btconnect.com" aka spammer is making it look like our email address so we can't set sweep rules and sending to spam and reporting as phishing is doing nothing. We get 3 a day and its a matter of time before another volunteer clicks on one of these...

 

2: hacked btconnect email accounts sending us "your bill is ready DATE". When I report as phishing or spam the inbox only blocks the sender. I can't implement sweep rules with the header text for some reason and we just keep getting them from other hacked accounts.

 

We are using O365 OWA. I've set up an example sweep today from advice from another post but as you can see it sweeps the senders emails not the header text which I can't find out how to add into  sweep, spam or phishing filters.

 

The email account was set up years ago by someone else so I only have the same access everyone else does.

 

sweep rules.png

 

 

 

Labels:
1,195 Views
1 Like
1 Reply
Reply
1 Reply
Vasil Michev

‎Jun 12 2021 12:23 AM

‎Jun 12 2021 12:23 AM

Re: O365 OWA keep getting phishing emails + addressed from our email address

Sweep rules arent designed for such scenarios, best use a mail flow rule or block the sender in the anti-spam config: https://docs.microsoft.com/en-us/microsoft-365/security/office-365-security/create-block-sender-list...
0 Likes
Reply