Improve EOP&ATP phishing capabilities to stop phishing emails from other O365 tenants
We turned on every single EOP and ATP setting to the max but are still getting phishing emails from other O365 tenants. Over 85% of phishing that is delivered to users' mailboxes is from other O365 tenants. CLEARLY, EOP and ATP trust other O365 tenants more than they should.
James Valente commented
I'd even expand this to intra-tenant protection. We've had multiple instances of compromised users phishing other users and it being completely ignored by EOP and ATP. When I raised this with MS Premier support I only got condescending suggestions to enable MFA for all users since the solution we're paying hundreds of thousands of dollars for didn't protect intra-tenant attacks.
MS needs to realize that if it's selling its platforms for Education it needs to account for use-cases within Education (what's MS's support suggestion for a MFA issue at 11PM when an assignment is due and there is a small helpdesk team for 10k+ students?) . Rather than dismissing the issue with a solution that isn't suitable, they should be addressing user concerns.