Threat Protection not scanning links within attachments
Advanced Threat Protection is not blocking phishing links within attachments. These links are coming through in a higher frequency as pdf attachments which are scanned by ATP and in turn are allowed through because they are clean attachments, but the links embedded within these pdf files are going to phishing websites and people are clicking on them. ATP is not blocking these links. Please fix ASAP!!!
Please report all spam, malware, URL, etc. issues in Submissions Explorer: https://docs.microsoft.com/en-us/office365/securitycompliance/admin-submission
Recently found out this was also an issue with attached EML files meaning the safe links scanning is being bypassed.
Anders Sjölander commented
Even more serious is the links in attached text and HTML documents. We've had a couple of bad incidents due to this.
Gaurav Anand commented
This is to bring to your notice that spammers/phishers have started targeting Office 365 Tenants which creates a mail loop between Office 365 hosted domains and these emails are getting circulated through which accounts gets compromised. We had a lot of incidences happening in our environment, As these emails are getting generated from the actual account hosted in Office 365 the email are considered to be safe and lands in users Inbox