Let say I have contoso.com as my primary domain. I am sending emails all around the world to a different domain. I have one of my customers fall into a phishing and spoofing incident. My customer receives an email from "comtosoo.com" which is the domain that is sending phishing emails. My customer wasn't able to notice the email address at first glance so they mistakenly thought that's its the right email address.
I am well aware of email protection like SPF, DKIM, and DMARC but these settings do not protect me from Cross-domain spoofing (based on my experience).
Is there a setting that I can configure to my Microsoft 365 tenant account to protect my email recipients from falling into such schemes?
What are the settings and recommendations that you can provide to limit and prevent such incidents?