check before: 2022-09-01
Product:
Defender, Defender for Office 365, Exchange, Microsoft 365 Defender
Platform:
Online, US Instances, Web, World tenant
Status:
Launched
Change type:
New feature, Admin impact
Links:
Details:
We are strengthening Spoofing protection within Exchange online protection and Microsoft Defender for Office 365 Anti-Spam security policy. It will provide a way to secure your organization against spoofing attacks that may otherwise occur by allowing certain domains and senders.
Applies to:
Exchange Online Protection
Microsoft Defender for Office 365 plan 1 and plan 2
Microsoft 365 Defender
This message is associated with Microsoft 365 Roadmap ID 93436
[When this will happen:]
Standard: Rollout will begin in late September and will be completed by late November.
GCC/GCC-H/DoD: Rollout will begin in late November and be completed by late December.
Change Category:
XXXXXXX ... free basic plan only
Scope:
XXXXXXX ... free basic plan only
Release Phase:
General Availability
Created:
2022-08-18
updated:
2022-08-27
Task Type
XXXXXXX ... free basic plan only
Docu to Check
XXXXXXX ... free basic plan only
MS How does it affect me
XXXXXXX ... free basic plan only
MS Preperations
XXXXXXX ... free basic plan only
MS Urgency
XXXXXXX ... free basic plan only
MS workload name
XXXXXXX ... free basic plan only
linked item details
XXXXXXX ... free basic plan only
More Info URL
XXXXXXX ... free basic plan only
** AI generated content. This information is not reliable.
the free basic plan is required to see all details. Sign up here
change history
Date | Property | old | new |
2022-09-15 | MC prepare | To prepare for this change it is recommended that you review the spoof intelligence report and ensure that any intra-org messages where the sender/sending domain is part of your accepted domain pass authentication as expected. Note you do not need to update items where authentication fails and that failure is expected. Review your existing Anti-Spam policies within threat policies and consider updating the list of Allowed domains / Allowed senders to allow whom you trust. We recommend updating your necessary training documents accordingly.
Learn More: Configure your anti-spam filter policies Create allowed spoofed sender entries using Tenant allow block list - Spoofing Spoof intelligence insight Spoof detections report ps://docs.microsoft.com/microsoft-365/security/defender/microsoft-365-defender?view=o365-world ps://docs.microsoft.com/microsoft-365/security/office-365-security/allow-block-email-spoof?view=o365-worldwide#create-allowed-spoofed-sender-entri ps://docs.microsoft.com/microsoft-365/security/office-365-security/configure-your-spam-filter-policies?view=o365-worldwide#use-the-microsoft-365-defender-portal-to-create-anti-spam-polici ps://docs.microsoft.com/microsoft-365/security/office-365-security/defender-for-office-365?view=o365-world ps://docs.microsoft.com/microsoft-365/security/office-365-security/exchange-online-protection-overview?view=o365-world ps://docs.microsoft.com/microsoft-365/security/office-365-security/learn-about-spoof-intelligence?view=o365-world ps://docs.microsoft.com/microsoft-365/security/office-365-security/view-email-security-reports?view=o365-worldwide#spoof-detecti ps://www.microsoft.com/microsoft-365/roadmap?owM365RoadmapSearchInput=93436&owM365RoadmapSearchButton=&filters=&searchterms=93436 | To prepare for this change it is recommended that you review the spoof intelligence report and ensure that any intra-org messages where the sender/sending domain is part of your accepted domain pass authentication as expected. Note you do not need to update items where authentication fails and that failure is expected. Review your existing Anti-Spam policies within threat policies and consider updating the list of Allowed domains / Allowed senders to allow whom you trust. We recommend updating your necessary training documents accordingly.
Learn More: Configure your anti-spam filter policies Create allowed spoofed sender entries using Tenant allow block list - Spoofing Spoof intelligence insight Spoof detections report https://docs.microsoft.com/microsoft-365/security/defender/microsoft-365-defender?view=o365-worldwide https://docs.microsoft.com/microsoft-365/security/office-365-security/allow-block-email-spoof?view=o365-worldwide#create-allowed-spoofed-sender-entries https://docs.microsoft.com/microsoft-365/security/office-365-security/configure-your-spam-filter-policies?view=o365-worldwide#use-the-microsoft-365-defender-portal-to-create-anti-spam-policies https://docs.microsoft.com/microsoft-365/security/office-365-security/defender-for-office-365?view=o365-worldwide https://docs.microsoft.com/microsoft-365/security/office-365-security/exchange-online-protection-overview?view=o365-worldwide https://docs.microsoft.com/microsoft-365/security/office-365-security/learn-about-spoof-intelligence?view=o365-worldwide https://docs.microsoft.com/microsoft-365/security/office-365-security/view-email-security-reports?view=o365-worldwide#spoof-detections-report https://www.microsoft.com/microsoft-365/roadmap?owM365RoadmapSearchInput=93436&owM365RoadmapSearchButton=&filters=&searchterms=93436 |
2022-08-27 | MC prepare | To prepare for this change it is recommended that you review the spoof intelligence report and ensure that any intra-org messages where the sender/sending domain is part of your accepted domain pass authentication as expected. Note you do not need to update items where authentication fails and that failure is expected. Review your existing Anti-Spam policies within threat policies and consider updating the list of Allowed domains / Allowed senders to allow whom you trust. We recommend updating your necessary training documents accordingly.
Learn More: Configure your anti-spam filter policies Create allowed spoofed sender entries using Tenant allow block list - Spoofing Spoof intelligence insight Spoof detections report https://docs.microsoft.com/microsoft-365/security/defender/microsoft-365-defender?view=o365-worldwide https://docs.microsoft.com/microsoft-365/security/office-365-security/allow-block-email-spoof?view=o365-worldwide#create-allowed-spoofed-sender-entries https://docs.microsoft.com/microsoft-365/security/office-365-security/configure-your-spam-filter-policies?view=o365-worldwide#use-the-microsoft-365-defender-portal-to-create-anti-spam-policies https://docs.microsoft.com/microsoft-365/security/office-365-security/defender-for-office-365?view=o365-worldwide https://docs.microsoft.com/microsoft-365/security/office-365-security/exchange-online-protection-overview?view=o365-worldwide https://docs.microsoft.com/microsoft-365/security/office-365-security/learn-about-spoof-intelligence?view=o365-worldwide https://docs.microsoft.com/microsoft-365/security/office-365-security/view-email-security-reports?view=o365-worldwide#spoof-detections-report https://www.microsoft.com/microsoft-365/roadmap?owM365RoadmapSearchInput=93436&owM365RoadmapSearchButton=&filters=&searchterms=93436 | To prepare for this change it is recommended that you review the spoof intelligence report and ensure that any intra-org messages where the sender/sending domain is part of your accepted domain pass authentication as expected. Note you do not need to update items where authentication fails and that failure is expected. Review your existing Anti-Spam policies within threat policies and consider updating the list of Allowed domains / Allowed senders to allow whom you trust. We recommend updating your necessary training documents accordingly.
Learn More: Configure your anti-spam filter policies Create allowed spoofed sender entries using Tenant allow block list - Spoofing Spoof intelligence insight Spoof detections report ps://docs.microsoft.com/microsoft-365/security/defender/microsoft-365-defender?view=o365-world ps://docs.microsoft.com/microsoft-365/security/office-365-security/allow-block-email-spoof?view=o365-worldwide#create-allowed-spoofed-sender-entri ps://docs.microsoft.com/microsoft-365/security/office-365-security/configure-your-spam-filter-policies?view=o365-worldwide#use-the-microsoft-365-defender-portal-to-create-anti-spam-polici ps://docs.microsoft.com/microsoft-365/security/office-365-security/defender-for-office-365?view=o365-world ps://docs.microsoft.com/microsoft-365/security/office-365-security/exchange-online-protection-overview?view=o365-world ps://docs.microsoft.com/microsoft-365/security/office-365-security/learn-about-spoof-intelligence?view=o365-world ps://docs.microsoft.com/microsoft-365/security/office-365-security/view-email-security-reports?view=o365-worldwide#spoof-detecti ps://www.microsoft.com/microsoft-365/roadmap?owM365RoadmapSearchInput=93436&owM365RoadmapSearchButton=&filters=&searchterms=93436 |
Last updated 4 months ago