QuixTec provides technical bulletins ‘unaltered’ from Microsoft. As an authorized Microsoft Partner, experienced SharePoint development group and Office 365 expert, QuixTec’s’ custom online or on premises solutions include the latest Microsoft updates throughout initiatives that we custom develop for you.
From Microsoft Corporation
Technical Bulletin: MC265759 · Published Jun 30, 2021
Microsoft believes it’s critical to keep our customers secure by default. We have determined that legacy overrides tend to be too broad and cause more harm than good. As a security service, we believe it’s imperative that we act on your behalf to prevent your users from being compromised. This means these legacy overrides will no longer be honored for email messages we believe are malicious. We already apply this approach with malware messages and now we have extended it to messages with high confidence phish verdicts. We have been taking a very deliberate approach to rolling out these changes in phases to ensure customers are not surprised and there are no negative side effects. We began to rollout Secure by Default for high confidence phishing messages by the override type starting in December 2020 (Roadmap ID 60827). Today, we’re at a point in our Secure by Default journey where the following overrides are not honored for malicious emails (malware or high confidence phish emails):
- Allowed sender lists or allowed domain lists (anti-spam policies)
- Outlook Safe Senders
- IP Allow List (connection filtering)
We are now extending Secure by Default to cover high confidence phishing messages for the remaining legacy override type, Exchange mail flow rules (also known as transport rule or ETRs).
- Timing: We will begin rolling out Secure by Default for ETRs starting at the beginning of August and complete rollout by early September.
- Action: Review and assess impact.
How this will affect your organization:
After the last phase of Secure by Default is enabled in August for ETRs, Defender for Office 365:
- Will no longer deliver messages with a high confidence phish verdict, regardless of any explicit ETRs.
- Will no longer recommend using ETRs to configure third-party phishing simulations or Security Operations mailbox message delivery.
What you need to do to prepare:
If you are currently using Exchange mail flow rules (also known as transport rules or ETRs) to configure your third-party phishing simulation campaigns or delivery for security operation mailboxes, you should begin to configure these with the new Advanced Delivery policy when the feature is launched in July (Roadmap ID 72207). For more information, please refer to message center post MC256473. Administrators should also use the submission portal to report messages whenever they believe a message has the wrong verdict so that the filter can improve organically.
- Microsoft Defender for Office 365 tech community blog announcing the final phase of Secure by Default rollout: Mastering Configuration Part Two (microsoft.com)
- How we are keeping customers secure: Secure by default in Office 365 – Office 365 | Microsoft Docs
- MS documentation on the new Advanced Delivery Policy: Configure the delivery of third-party phishing simulations to users and unfiltered messages to SecOps mailboxes – Office 365 | Microsoft Docs
ABOUT US: QuixTec, LLC is a U.S. certified Veteran Owned, modern DevOps organization and Microsoft Partner that specializes in Microsoft SharePoint, Office 365 expertise & HTML5 technologies for small to enterprise-sized organizations. The founder, Richard, has 30 years of experience working with several notable companies that include World Vision, Expedia, Microsoft, Levi Strauss, NASA, Boeing Aerospace, Los Alamos National Laboratory, and the U.S. Air Force, to name a few. QuixTec is in the Seattle area. Phone today for a free consultation and project estimate: (425) 367-9025 SHAREPOINT DEVELOPMENT – CUSTOM SOLUTION DEVELOPMENT – OFFICE 365 EXPERTS – SHAREPOINT DOCUMENT LIBRARIES – SHAREPOINT CONSULTANCY – SPECIAL NGO RATES