This Enhanced Phishing Protection that we mentioned above is actually pretty damn cool. While it can be useful in various ways, the feature can also warn users when it detects them trying to save plaintext passwords in text files. More on this feature in Microsoft’s blog post. Read more in Enhanced Phishing Protection in Microsoft …
Microsoft Defender
Updated November 17, 2022: We have updated the rollout timeline below. Thank you for your patience. Over the last few months, the experiences and functions of Microsoft Defender for Identity have been made available in Microsoft’s extended detection and response (XDR) platform, Microsoft 365 Defender. Merging identity data and functions into this XDR experience is …
We are excited to announce that in Microsoft 365 Defender, you can now block suspicious entities when submitting emails, URLs, or attachments for Microsoft to review. This message is associated with Microsoft 365 Roadmap ID 98920. Security teams can now block sender email addresses, domains, URLs and email attachments while making admin submission for email, …
We’re updating Microsoft Secure Score improvement actions to ensure a more accurate representation of your organization’s security posture.
We are announcing the final step in the retirement of ‘Office 365 Security and Compliance Center’ (protection.office.com). This is a continuation of our migration to our new portals: the Microsoft 365 Defender portal, Microsoft Purview compliance portal, and modern Exchange admin center.
This message is a continued reminder (previously MC399488 July ’22) about the enhanced anti-malware Engine for Linux and macOS that we have been rolling out. A few months back we announced the general availability and gradual roll-out of our enhanced anti-malware engine for Linux and macOS.
Currently available in public preview (MC387638), we’re rolling out a new unified incident management experience for Microsoft Purview Data Loss Prevention (DLP) in the Microsoft 365 Defender portal along with native integration with Microsoft Sentinel through the Microsoft 365 Defender connector in Sentinel. This message is associated with Microsoft 365 Roadmap ID 93322. This feature …
In Safe Attachments policies, ‘Replace’ is one of the actions that can be applied to messages that are found to contain malware. This action delivers only the message body without any of the original attachments. A replacement text attachment is added to the message to notify that the attachments were removed due to malware detection.
In Safe Attachments policies, the option Enable redirect forwards messages with detected attachments to the specified admin email address as an email attachment if the section is Block, Monitor, or Replace. The change being introduced is to support Enable redirect only for the Monitor action. Enable redirect will no longer support the Replace or Block …
Defender for Cloud Apps is updating its IP addresses related to ‘App connectors’ and ‘Third-party DLP integration’.
We are strengthening Spoofing protection within Exchange online protection and Microsoft Defender for Office 365 Anti-Spam security policy. It will provide a way to secure your organization against spoofing attacks that may otherwise occur by allowing certain domains and senders. This message is associated with Microsoft 365 Roadmap ID 93436. Currently, EOP and MDO tenant …
We recently changed the Incident and alert classification experience, including an updated classification and determination values list, previously supported values “Apt” and “SecurityPersonnel” will soon be retired.
We are adding the ability to take actions from the email entity page. You can take email remediation actions, create submissions, tenant level block actions (block sender/domain/file/URLs), investigative actions from email entity page. This message is associated with Microsoft 365 Roadmap ID 93295. We are adding the ability to take actions from the email entity …
We’re updating Microsoft Secure Score recommended actions to ensure a more accurate representation of your organization’s security posture.
We’re updating Microsoft Secure Score improvement actions to ensure a more accurate representation of your organization’s security posture.
