question

Jennifer-3804 avatar image
0 Votes"
Jennifer-3804 asked cscottjerger commented

Phishing attack , steps to avoid it

Hi team,

Our organization recently got a phishing attack, could you please let me know what are the steps we can take to avoid this happen again.

Thank you for your help,

office-exchange-online-itpro
· 2
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Jennifer,

May I ask a couple of questions for clarity?

  1. What Microsoft products are you currently using?

  2. Have you changed since the phishing attack?

  3. Why device and application were the user using when they got infected?


0 Votes 0 ·

Hello Scott

Please see below the answers


What Microsoft products are you currently using? Microsoft 365 E3 licenses

Have you changed since the phishing attack? No

What device and application were the user using when they got infected? Their laptop, outlook application


Thank you for your help



0 Votes 0 ·
YukiSun-MSFT avatar image
0 Votes"
YukiSun-MSFT answered

Hi @Jennifer-3804,

By default, there's already a built-in anti-phishing policy that contains a limited number of anti-spoofing features enabled in Microsoft 365 organizations with mailboxes in Exchange Online. It can be viewed in the Anti-phishing page(https://security.microsoft.com/antiphishing).
121025-1.png

Considering that your organization is still getting phishing attack, you can increase that protection by refining the current settings of the anti-phishing policy or creating custom anti-phishing policies with stricter settings that are applied to specific users or groups of users. See: Configure anti-phishing policies in EOP.

Furthermore, there are some additional features included in Exchange Online Protection (EOP) and Microsoft Defender for Office 365 which can help protect your organization from phishing threats. For more information, hopefully you can find the document belwo helpful:
Anti-phishing protection in Microsoft 365


If an Answer is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.



1.png (51.2 KiB)
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

cscottjerger avatar image
0 Votes"
cscottjerger answered

Thanks for the information. Microsoft Defender for Office 365 plan 2 has many of the features to help with these issues. Go to this site for access to an Interactive Guide. Well worth the 20-minute investment. Whenever possible, empowering the users with training and live testing gives some personal accountability which can help in the long term. To access, visit the new Security Portal > Email & collaboration > Attack simulation training.


For getting started information about Attack simulation training, see Get started using Attack simulation training.
121009-attacksimulationtraining.jpg



5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Jennifer-3804 avatar image
0 Votes"
Jennifer-3804 answered cscottjerger commented

Thank you guys!

· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Of course, my pleasure.

0 Votes 0 ·