Allow Office 365 Admins the ability to update the Sensitive Word List for SPAM filtering, the ability to update this list by the admins will alleviate the stress of Microsoft to have to manage the list themselves. This will also increase the identification of Unsolicited emails and decrease the wait time for a resolution to take place.

The retention policy lock should be able to be changed! The forever unchanged is the history of content and should be backup in a separated location. Right now, if the retention policy includes SharePoint, the sharepoint site admin not even can delete the lib/list etc. This is dumb. The retention should smart enough to backup the delete files and without interrupt the users.

Currently AIR might find that normal links to Facebook or LinkedIn company pages are malicious, and consequently suggest in an investigation to delete any mail with such links. It's currently too easy to just approve 5-7 suggested actions of a suspect malicious mail - and perhaps delete 1 million legit mail in the process.

Why is counted against you, if your environment doesn't require a hash sync?

The operation log of content search is confirmed in the audit log.

However, although it is output as a search result, I would like to check in detail, such as "Administrator A confirmed the email received at User A's 8/1 11:11".

コンテンツ検索の操作ログを、監査ログにて確認しています。
しかし、検索結果としては出力されますが、「管理者 A がユーザー A の8/1 11:11 に受信したメールを確認した」のように細かく確認したいです。

Ssi

Suggestions can only be cleared by users selecting the X next to the suggestion.

Provide O365 admin the ability to clear a user's suggestions or a collection of users (domain or tenancy).

The threat explorer allows to search for malware families. You need to enter either the top-level Malware Family or top-level+second-level malware family. This makes searching for malware, without knowing the exact top level family very difficult.

Example : Searching for "DDE".
In order to find all malware related to DDE you need to include "O97M" (top malware) in the search for DDEDownloader.C

Shared Mailbox Audit

When an phishing email comes into a shared mailbox. We should be able to tell which users have opened the email in the Shared Mailbox, which users have clicked on a phishing URL via the Shared Mailbox and also search via the Sender to fasten the investigation.

As administrator, I checked/selected SOME quarantined emails and deleted them. It deleted ALL quarantined emails even if they weren't checked!

If someone (global admin) add any subscription to the tenant, we should be audit such events. Ticket #:10552042

FYI they had australian accents

Develop a report at field level in PWA to support SOX auditing. Fields related to Budget, time approval and Forecast.

you should add network bandwidth option. when i dowload dismissed user then download mails ; it use whole my internet bandwitdh.

Due to confidential voicemail messages in mailboxes, can there be an option in the new e-Discovery search to filter out by voicemail message. I understand that you can specify searches by keywords, but if there is a build in feature in e-Discovery to exclude voicemail, this can prevent man made mistakes when performing searches.

The new Attack simulator don't take the passwords without special characters
For example
If the password is Test1 it not gonna show that any of your user is susceptible to Brute Force Password attacks.
But if the password is Test01- that way can be recognized and gonna show you that one of your users is susceptible to Brute Force Password attacks.