Refine the mechanism behind the anti-phishing policies.
We are seeing an incredible amount of emails being filtered for email senders from domains which are only similar to what we have stipulated that we would like to protect.
This needs to be refined. Similar email domains should not be filtered,
For example, if within the policy, you specifically state that you want to protect germany.com and then you see hundreds of emails being filtered with a sender address of email@example.com , it is not efficiently being acted upon.