561 votes26 comments · Office 365 Security & Compliance » Spam & Phishing · Flag idea as inappropriate… · Admin →
ATP does not consider mails from other Office 365 tenants, or even mailboxes inside of your tenant, as safe. The best way to put a stop to this is to follow the recommendations in SecureScore for your tenant; and report phishing mails to us promptly. Also, make sure that the sender is not allowed either by the tenant configuration or the user safelist.Tony commented
Can we get a site that we can report compromised tenants?
I just got one, also use ATP and the link takes you to a compromised tenant which redirects to a different site to harvest credentials.
It should be a way we can report these sites and someone should be able to take immediate action