Microsoft Defender for Office 365: Extending Secure by Default for Exchange Transport Rules (ETRs)

Microsoft believes it’s critical to keep our customers secure by default. We have determined that legacy overrides tend to be too broad and cause more harm than good. As a security service, we believe it’s imperative that we act on your behalf to prevent your users from being compromised. This means these legacy overrides will no longer be honored for email messages we believe are malicious. We already apply this approach with malware messages and now we have extended it to messages with high confidence phish verdicts. We have been taking a very deliberate approach to rolling out these changes in phases to ensure customers are not surprised and there are no negative side effects. We began to rollout Secure by Default for high confidence phishing messages by the override type starting in December 2020 (Roadmap ID 60827). Today, we’re at a point in our Secure by Default journey where the following overrides are not honored for malicious emails (malware or high confidence phish emails):

•  Allowed sender lists or allowed domain lists (anti-spam policies)
•  Outlook Safe Senders
•  IP Allow List (connection filtering)

(more…)

Originally posted by Microsoft Jun 30, 2021 Exchange Online 0 Comments

Teams Follows Office Preview

We are rolling out a new Teams policy that will allow users to automatically be in the Public Preview channel of Teams if they are in Current Channel Preview for the Office 365 Client.

IT admins can modify this policy for end users such that if Office is getting updates from Current Channel (Preview), Teams will receive updates via Public Preview.

(more…)

Originally posted by Microsoft Jun 25, 2021 Microsoft Teams 0 Comments

Microsoft Defender for Office: Updates to investigations

We are improving Microsoft Defender for Office automated investigation email clustering and actions to ensure that actions only occur on malicious emails still in the mailbox. This will result in more accurate threat information, with fewer email actions, and refreshed actions/data.

This message is associated with Microsoft 365 Roadmap ID 82056.

(more…)

Originally posted by Microsoft Jun 18, 2021 Exchange Online 0 Comments

Office Telemetry Dashboard to be removed from Microsoft 365 Apps for enterprise, starting with Version 2208

Office Telemetry Dashboard is being removed from Microsoft 365 Apps for enterprise. The first version of Microsoft 365 Apps for enterprise without Office Telemetry Dashboard will be Version 2208, which is expected to be available first in Current Channel in the second half of August 2022.

Note: If you do not use Office Telemetry Dashboard, you can disregard this message.

(more…)

Originally posted by Microsoft Jun 17, 2021 Microsoft 365 Apps 0 Comments

First contact safety tip setting in Anti-Phishing policy

The first contact safety tip that warns users of a suspicious email which could potentially be related to a Business Email Compromise is a feature that exists today (September 2020).

• It can currently be configured using an Exchange transport rule (ETR) or Mailflow rule.

(more…)

Originally posted by Microsoft Jun 15, 2021 Exchange Online 0 Comments

Updates to Microsoft Defender for Office 365 events in Office 365 Management API

We have been working to meet the extensibility requirements of our customers, who are using the information around our detections within their custom tools. As part of this update, we are enhancing the information around Email Detections within Office 365 Management API.

This message is associated with Microsoft 365 Roadmap ID 70744

(more…)

Originally posted by Microsoft Jun 9, 2021 Exchange Online 0 Comments

The device code flow user experience will now include an app confirmation prompt

As a security improvement, the device code flow has been updated to include an additional prompt, which validates that the user is signing into the app they expect.

When this will happen:

(more…)

Originally posted by Microsoft Jun 8, 2021 Basic Mobility & Security 0 Comments

Now GA for Communication Compliance: OCR support and 7 added languages for pre-trained classifiers

Previously announced in public preview (MC238655), the following Communication Compliance features are now generally available:

• Leverage optical character recognition to extract and evaluate images in messages
• Support additional languages for Threat, Profanity, and Harassment classifiers

(more…)

Originally posted by Microsoft Jun 7, 2021 Microsoft 365 suite 0 Comments

Exchange Admins can now use Integrated Apps in Microsoft Admin Center

Now Exchange Admin can access the Integrated apps experience in Microsoft Admin center under the Settings tab from where they can directly discover, deploy and manage Microsoft 365 add-ins. If the add-ins are part of M365 Apps developed by Microsoft partners they will also be able to discover other apps and deploy those add-ins, they have permissions to.

When this will happen:

(more…)

Originally posted by Microsoft Jun 2, 2021 Exchange Online 0 Comments

Two new Direct Routing endpoints in Japan

Direct routing service is adding capacity across regions and that capacity falls into already published Teams IP ranges and domains. Please make sure that all published Teams specific endpoints are permitted for your Direct Routing scenarios.

When this will happen:

(more…)

Originally posted by Microsoft May 28, 2021 Microsoft Teams 0 Comments