576 votes29 comments · Office 365 Security & Compliance » Spam & Phishing · Flag idea as inappropriate… · Admin →
ATP does not consider mails from other Office 365 tenants, or even mailboxes inside of your tenant, as safe. The best way to put a stop to this is to follow the recommendations in SecureScore for your tenant; and report phishing mails to us promptly. Also, make sure that the sender is not allowed either by the tenant configuration or the user safelist.Maqsood Pasha commented
Phishing attacks using Office 365 compromised Accounts/Tenant exceed threshold.
Hello Microsoft Team,
This is to bring to your notice that spammers/phishers have started targeting Office 365 Tenants which creates a mail loop between Office 365 hosted domains and these emails are getting circulated through which accounts gets compromised. We had a lot of incidences happening in our environment and our tenant is getting exceed threshold due to that we are unable to send emails to any external domain. We have raised the issue with MS tech support 4 weeks back and issue has not been fixed permanently. This is impacting our business regularly especially during the weekends and MS product support team is not supporting during weekend. As these emails are getting generated from the actual account hosted in Office 365 the email are considered to be safe and lands in users Inbox. We have ATP safe links policy in place however it’s not performing the job as expected. ATP is a great feature but we request you all to look in this matter on a larger scale. We have created a case with Microsoft Support for Office 365.