Azure Active Directory Conditional Access has functionality for “Countries/Regions” – see https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/location-condition
That said, the most effective protection you can have against password spray attacks is to enable MFA and disable basic authentication. If you cannot do this for your entire organization, then blocking user access to legacy protocols like POP, EWS, IMAP and SMTP is another step you can take. Exchange Online Client Access Rules can help you to further customize (https://docs.microsoft.com/en-us/exchange/clients-and-mobile-in-exchange-online/client-access-rules/client-access-rules). For additional recommendations, please see Office 365 Secure Score.
That said, please know that we are listening to feedback and working on solutions to help make Office 365 users more secure. Thank you for the feedback.
An error occurred while saving the commentAnonymous commented
Yea this is a major issue and should be something simply to rectify. I continue to have login attempts in my personal Outlook account from other countries where they attempt to sync into my account from countries such as Iran, Russia, China, Ukraine, Thailand, Vietnam, etc. These login/sync attempts are happening on a daily frequency so it appears it is some sort of algorithmic program. The fact you guys have been made aware and are not doing anything to fix it is a bit perplexing.... it seems you're only worried if a major breach happens again. Looks like MSFT will be the next Equifax hack waiting to happen until you take security seriously. Very sad.
It would be so simple to put a block on foreign countries attempting to login and would increase user security... It appears this is an issue affecting many people using Outlook and my guess is most people don't even know it's happening to them - the only reason I know is b/c I proactively checked user sign-ins. I never even received a warning message from Microsoft!! Scary that you're not being proactive with user security or taking it seriously....Anonymous supported this idea ·