Why not use when Microsoft has free tools to make everyone’s lives easier? Even though all the protection has been added to the Exchange Online environment with Exchange Online Protection, Exchange Online Advanced Threat Protection or any any other 3rd part SPAM gateway or BEC detection (Business Email Compromise) setup, chances are a well crafted email can survive all the hurdles and still be delivered to the user’s mailbox and it comes down to the decision making time by the user. If the user is well educated with identifying phishing attacks and suspicious emails, chances are they won’t click on that link and enter the credentials.
And apart from notifying relevant IT staff, user can now report the suspicious email as Junk or Phishing so Microsoft will be notified the information will be kept for any similar event.
You are strong as your weakest link
It is highly important to continuously educate the users with what they “Should not click” and what they “Should not open” and it’s great if you can enable the below add-in and advise them to report emails if they see anything suspicious.
Steps to enable the Add-in
- Login to https://admin.microsoft.com
- Navigate to Settings
- Go to Add-ins
- Click on Deploy Add-in
- Click Next on the message
- Select Choose from the Store option
- Select the Add-in Report Message > Add
- Configure the add-in according to your preference
- If you need to test this feature, go with Just Me option.
- If you select Available option that will be available to install but will not be installed automatically.
- Press Next > Close
Where to find the add-in in Outlook?
- In Outlook Client
- go to Home > Get Add-ins button
Where is the Add-in?
After a while, the add-in will appear Outlook. Or you may have to restart Outlook to make it appear
How to report?
There are few options when you trying to report a suspicious message.
Report as Junk
Will be reported and moved to the Junk Items folder
Report as Phishing
Will be reported and moved to the Deleted Items folder
Report as Not Junk
For this to be actioned, you have to go to the Junk Items folder and select the email item that is not junk but has gone in to the junk items folder
Once you know the controls, you can then roll this out to the user and advise them to start reporting the items that may have delivered to their inbox and Microsoft will learn the patterns and will start blocking the emails of similar nature.
Feature image: Phishing Vectors by Vecteezy