Enable geofencing in Office365
Enabling geofencing will be a good option to prevent access from different parts of the world.
Conditional access only kicks in after the attacker performs a successful login. The geo-fencing should be enforceable prior to the attacker even seeing my tenant's login portal, so they can't continue to perform spray attacks and password attempts.
i dont understand why this doesn't exist or why it hast got a lot more votes?! It'd really help with the developing world of phishing attacks. While not removing it (unless you could also block custom IPs such as known IPs for VPN companies) it would slow a hacker down!
Conditional access if you subscribe to azure premium. There no way the powers that be will a lot me $12000 just to be able to use geofencing.
Alan Cunningham commented
You can use Azure Active Directory Admin Center, Conditional Access Polices to do this
Nathan Luther commented
This will improve security for office 365 on a global scale