Quick Guide: Exchange Online Add-in to Report Phishing Emails to Microsoft

Why not use when Microsoft has free tools to make everyone’s lives easier? Even though all the protection has been added to the Exchange Online environment with Exchange Online Protection, Exchange Online Advanced Threat Protection or any any other 3rd part SPAM gateway or BEC detection (Business Email Compromise) setup, chances are a well crafted email can survive all the hurdles and still be delivered to the user’s mailbox and it comes down to the decision making time by the user. If the user is well educated with identifying phishing attacks and suspicious emails, chances are they won’t click on that link and enter the credentials.

And apart from notifying relevant IT staff, user can now report the suspicious email as Junk or Phishing so Microsoft will be notified the information will be kept for any similar event.

You are strong as your weakest link

It is highly important to continuously educate the users with what they “Should not click” and what they “Should not open” and it’s great if you can enable the below add-in and advise them to report emails if they see anything suspicious.

Steps to enable the Add-in

  • Click on Deploy Add-in
  • Click Next on the message
  • Select Choose from the Store option
  • Select the Add-in Report Message > Add
  • Select Continue on the License terms and Privacy policy
  • Configure the add-in according to your preference
  • If you need to test this feature, go with Just Me option.
  • If you select Available option that will be available to install but will not be installed automatically.
  • Completion
  • Press Next > Close

Where to find the add-in in Outlook?

  • In Outlook Client
  • go to Home > Get Add-ins button

Where is the Add-in?

After a while, the add-in will appear Outlook. Or you may have to restart Outlook to make it appear


How to report?

There are few options when you trying to report a suspicious message.

Report as Junk

Will be reported and moved to the Junk Items folder

Report as Phishing

Will be reported and moved to the Deleted Items folder

Report as Not Junk

For this to be actioned, you have to go to the Junk Items folder and select the email item that is not junk but has gone in to the junk items folder

Options


Summary

Once you know the controls, you can then roll this out to the user and advise them to start reporting the items that may have delivered to their inbox and Microsoft will learn the patterns and will start blocking the emails of similar nature.

Feature image: Phishing Vectors by Vecteezy

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.