check before: 2024-10-01
Product:
Defender, Defender XDR, Exchange
Platform:
Online, US Instances, World tenant
Status:
Change type:
Feature update, Admin impact
Links:
Details:
Summary:
Exchange Online is updating bulk email filtering for better accuracy, factoring in intermediaries and enhancing BCL scores, especially when CAUTH is set to None. Rollout begins early October 2024, with completion by late October. Admins should review logs and prepare for changes in bulk email management.
Details:
We are continuously refining our defense-in-depth approach, ensuring optimal protection when intermediaries are involved in your email traffic. We're enhancing the assignment of Bulk Complaint Level (BCL) scores when connectors are utilized, particularly for instances where Composite Authentication (CAUTH) is set to None.
We are rolling out a significant update that will result in more accurate BCL scoring for bulk emails. This adjustment ensures that the presence of intermediaries is factored into the scoring, making bulk email filtering more consistent and reflective of the actual sender's reputation. As a result, organizations can expect enhanced email filtering precision, leading to more reliable and effective management of bulk emails.
[When this will happen:]
General Availability (Worldwide, GCC, GCC High): We will begin rolling out early October 2024 and expect to complete by late October 2024.
Change Category:
XXXXXXX ... free basic plan only
Scope:
XXXXXXX ... free basic plan only
Release Phase:
Created:
2024-09-21
updated:
2024-09-21
Task Type
XXXXXXX ... free basic plan only
Docu to Check
XXXXXXX ... free basic plan only
MS How does it affect me
XXXXXXX ... free basic plan only
MS Preperations
XXXXXXX ... free basic plan only
MS Urgency
XXXXXXX ... free basic plan only
MS workload name
XXXXXXX ... free basic plan only
summary for non-techies**
Exchange Online is updating its bulk email filtering system in October 2024 to improve accuracy by refining how emails are scored, particularly those passing through multiple servers, which will be reflected in the Threat Protection Status report. Email system managers should review and possibly adjust custom rules to align with the new scoring system.
Direct effects for Operations**
Bulk Email Filtering Accuracy
Without preparation, the update may lead to an increase in legitimate bulk emails being flagged as spam due to the new BCL scoring system, causing disruption in communication.
- roles: Email Administrators, IT Support Staff
- references: https://learn.microsoft.com/defender-office-365/anti-spam-bulk-complaint-level-bcl-about?view=o365-worldwide, https://learn.microsoft.com/defender-office-365/reports-email-security#threat-protection-status-report
" target="_blank" rel="nofollow noopener noreferrer">https://learn.microsoft.com/defender-office-365/reports-email-security#threat-protection-status-report
Increased Volume in Threat Protection Status Reports
Admins may be unprepared for a sudden increase in bulk email volume reflected in TPS reports, leading to potential misinterpretation of email security status and unnecessary investigations.
- roles: Email Administrators, Security Analysts
- references: https://learn.microsoft.com/defender-office-365/reports-email-security#threat-protection-status-report, https://learn.microsoft.com/defender-office-365/email-authentication-about#composite-authentication
Configutation Options**
XXXXXXX ... paid membership only
IT Security**
XXXXXXX ... paid membership only
explanation for non-techies**
XXXXXXX ... free basic plan only
** AI generated content. This information must be reviewed before use.
a free basic plan is required to see more details. Sign up here
A cloudsocut.one plan is required to see all the changed details. If you are already a customer, choose login.
If you are new to cloudscout.one please choose a plan.