Enable geofencing in Office365
Enabling geofencing will be a good option to prevent access from different parts of the world.
All licenses from E1-E5 should have geofenced conditional access on by default.
Geofenced to O365 tenant country.
Make admins whitelist accepted countries.
More secure by default.
The majority of US customers don't do business traveling the whole world, so there is no legitimate reason a Latvian IP should EVER be able to access a US based O365 tenant without specific whitelisting.
Conditional access only kicks in after the attacker performs a successful login. The geo-fencing should be enforceable prior to the attacker even seeing my tenant's login portal, so they can't continue to perform spray attacks and password attempts.
i dont understand why this doesn't exist or why it hast got a lot more votes?! It'd really help with the developing world of phishing attacks. While not removing it (unless you could also block custom IPs such as known IPs for VPN companies) it would slow a hacker down!
Conditional access if you subscribe to azure premium. There no way the powers that be will a lot me $12000 just to be able to use geofencing.
Alan Cunningham commented
You can use Azure Active Directory Admin Center, Conditional Access Polices to do this
Nathan Luther commented
This will improve security for office 365 on a global scale