check before: 2025-08-01
Product:
Exchange, Purview Communication Compliance, Purview Data Loss Prevention
Platform:
US Instances, Web, World tenant
Status:
In development
Change type:
Links:
Details:
Traditionally, Exchange has relied solely on the file extension (e.g., .docx, .pdf) to identify the type of an attachment. However, this approach can be bypassed if a file is renamed with a misleading extension. To address this, we’re enhancing our detection logic to go beyond just the visible file extension. With this update, even if a file’s extension is altered, Exchange will evaluate the actual content of the file to determine its true type. This ensures that policies based on file type—such as “File extension is…”—remain effective and secure, even in cases of renamed or disguised attachments. This improvement provides customers with a more robust and reliable way to enforce compliance and security rules around file sharing.
Change Category:
XXXXXXX ... free basic plan only
Scope:
XXXXXXX ... free basic plan only
Release Phase:
General Availability, Preview
Created:
2025-05-10
updated:
2025-05-10
Public Preview Start Date
XXXXXXX ... free basic plan only
Docu to Check
XXXXXXX ... free basic plan only
MS workload name
XXXXXXX ... free basic plan only
summary for non-techies**
Microsoft is enhancing Exchange to analyze file content rather than just relying on file extensions, improving security by accurately identifying file types even if extensions are altered.
Direct effects for Operations**
File Type Detection Enhancement
The change may lead to temporary disruptions in file sharing processes as users adapt to the new detection logic, potentially causing confusion and delays in communication.
- roles: Compliance Officer, IT Support Specialist
- references: https://techcommunity.microsoft.com/t5/security-compliance-identity/microsoft-purview-compliance-portal-data-loss-prevention-detection/ba-p/3741230
Policy Enforcement Reliability
If the change is implemented without proper preparation, there may be a risk of false positives or negatives in file type detection, leading to unintended blocking of legitimate files or allowing harmful files to pass through.
- roles: Compliance Officer, Data Protection Officer
- references: https://techcommunity.microsoft.com/t5/security-compliance-identity/microsoft-purview-compliance-portal-data-loss-prevention-detection/ba-p/3741230
Configutation Options**
XXXXXXX ... paid membership only
Data Protection**
XXXXXXX ... paid membership only
IT Security**
XXXXXXX ... paid membership only
explanation for non-techies**
XXXXXXX ... free basic plan only
** AI generated content. This information must be reviewed before use.
a free basic plan is required to see more details. Sign up here
A cloudsocut.one plan is required to see all the changed details. If you are already a customer, choose login.
If you are new to cloudscout.one please choose a plan.
Last updated 2 weeks ago
