Recent DiscussionsMost RecentNewest TopicsMost LikesSolutionsTagged:TagRe: Sent from Outlook for iOS links Being Quarantined in DefenderSummary: Recently, Microsoft Defender for Office 365 observed false positives from heuristic-based detections related to URLs targeting fake Microsoft notification emails, e.g. Password expiry notifications. These detections are used to target the ever-changing email threat landscape and adjust to new tactics and techniques by various threat actors. These specific detections have been adjusted and the false positive issue has been mitigated. Furthermore, Microsoft Defender for Office 365 has implemented a long-term solution to handle such aka.ms links in a more robust fashion. Thanks, Microsoft Defender for Office 365 Product Group
Recent Blog ArticlesMost RecentMost LikesRe: Protect your organizations against QR code phishing with Defender for Office 365 jsalisbury& ExMSW4319Providing customers an ability to block incoming QR code related messages is a requestwe have received and will be considering it in our future roadmap. We will also take into...Re: Protect your organizations against QR code phishing with Defender for Office 365 jsalisburyCurrently we do notprovideabilityfor acustomer to block all QR codes.Given the extensive use of QR codes for a variety of legitimate scenarios, this may result in a high number of fal...Protect your organizations against QR code phishing with Defender for Office 365 QR code phishing campaigns have most recently become the fastest growing type of email-based attack. These types of attacks are growing and embed QR code images linked to malicious content directly i...Re: Protect your organizations against QR code phishing with Defender for Office 365 rdelvalleGreat question! Unfortunately, sandboxing environment is our internal detonation chamber and not accessible by customers. In the near future, there will be ability for customersto viewinf...Re: Protect your organizations against QR code phishing with Defender for Office 365 michaelkennedyNo specific configuration is needed. The QR code protection applies to Exchange Online Protection (EOP) as well as Microsoft Defender for Office 365 Plan 1 & Plan 2 licenses. We’ve upd...Re: Protect your organizations against QR code phishing with Defender for Office 365 Brian WilsonAs mentioned in the blog, while this threat is not new, it has recently grown significantly! Once the Microsoft Security Research and Threat Intelligence team saw a spike in these attack...Re: Protect your organizations against QR code phishing with Defender for Office 365 M_Wilkinson_If the MX record of the organization does not point at Office 365, then an ETR setting SCL to -1 will skip the protection. Please review the Secure by default documentation specifically ...Re: Protect your organizations against QR code phishing with Defender for Office 365 Brian ReidThanks for the feedback. No specific configuration is needed. The QR code protection applies to Exchange Online Protection (EOP) as well as Microsoft Defender for Office 365 Plan 1 & Plan ...Re: Protect your organizations against QR code phishing with Defender for Office 365 ExMSW4319Thanks for the suggestion, there are no plans to incorporate this kind of information in the headers. What will rather be beneficial is to view information in the hunting and email entity f...Re: Protect your organizations against QR code phishing with Defender for Office 365 jasonchristThank you for the feedback, this is work in progress. The hunting and end user training experiences are planned to be tentatively released in CY24Q1. Instead of the Source being “Attachme...
MicrosoftMicrosoftMicrosoftMicrosoft
