Latest Threat Research: Technical Analysis: Killer Ultra Malware Targeting EDR Products in Ransomware Attacks

Get Informed


Microsoft Will Enable Users of Office 365 to Report Teams Phishing Messages

Microsoft is updating Microsoft Defender for Office 365 to allow users of Microsoft Teams to notify security teams when they receive suspicious messages. Microsoft Defender for Office 365 (formerly known as Office 365 Advanced Threat Protection or Office 365 ATP) helps protect organizations from malicious email messages, links, and collaboration tools. This in-development feature will allow administrators to filter potentially dangerous messages targeting employees with malicious payloads or attempts to redirect them to phishing websites. “End users will be able to report suspicious Microsoft Teams messages as a security threat just like they do for emails – to help the organization to protect itself from attacks via Microsoft Teams,” stated Microsoft.

Analyst Notes

Microsoft is also trying to update Defender for Office 365’s submissions experience so that communications will be divided into separate tabs for Phish, Spam (Junk), and so on based on users’ reports. The updated submission feature will be available within the next month, while the new user reporting feature is now in preview and will likely continue rolling out to standard multi-tenants until the end of January 2023 for desktop and online clients globally. The new Defender for Office 365 features were built upon improvements announced in July 2021, allowing Microsoft Teams to automatically block phishing attempts. Microsoft extended Defender for Office 365 Safe Links protection to the Teams communication platform to protect users from dangerous URL-based phishing attacks. “Safe Links in Defender for Office 365 scans URLs at the time of click to ensure that users are protected with the latest intelligence from Microsoft Defender,” explained Microsoft. In November 2021, Redmond also released Built-In Protection to Defender for Office 365. This new feature automatically activates recommended settings and policies to verify that all new and current users receive at least a minimal level of protection. Built-In Protection is designed to improve the security posture of the business overall by significantly lowering the likelihood of a breach.