We are now extending Secure by Default to cover high confidence phishing messages for the remaining legacy override type, Exchange mail flow rules (also known as transport rule or ETRs). Allowed sender lists or allowed domain lists (anti-spam policies). ![]() ![]() Today, we’re at a point in our Secure by Default journey where the following overrides are not honored for malicious emails (malware or high confidence phish emails): We began to rollout Secure by Default for high confidence phishing messages by the override type starting in December 2020 ( Roadmap ID 60827). We have been taking a very deliberate approach to rolling out these changes in phases to ensure customers are not surprised and there are no negative side effects. We already apply this approach with malware messages and now we have extended it to messages with high confidence phish verdicts. This means these legacy overrides will no longer be honored for email messages we believe are malicious. As a security service, we believe it’s imperative that we act on your behalf to prevent your users from being compromised. We have determined that legacy overrides tend to be too broad and cause more harm than good. Microsoft believes it’s critical to keep our customers secure by default.
0 Comments
Leave a Reply. |