O365 Outlook online - MS report Phish and make PAB easer to use

Megválaszolt

Megjegyzések

7 megjegyzés

  • Hivatalos megjegyzés
    Avatar
    Douglas Freeman

    Hi Matt,

    I'd like to get you a ticket open with one of our Technical Support Reps who may be able to assist you in getting the PAB put in a more viable spot for your users. We may be able to find some resources that will assist you in removing that option in your O365. Would you like me to create a support ticket for you on this one?

    Hozzászólások műveletei Permalink
  • Avatar
    Jean Schuck

    Can you please share the resolution for this question? I have the same challenge.

    1
    Hozzászólások műveletei Permalink
  • Avatar
    Matt Hotujec

    I would appreciate it if you could create a support ticket for this.  Thank you!

    0
    Hozzászólások műveletei Permalink
  • Avatar
    Douglas Freeman

    Hey Matt!

    I created a support ticket for you on this one! A support technician should be reaching out to you shortly! 

    0
    Hozzászólások műveletei Permalink
  • Avatar
    Matt Hotujec

    KnowBe4 referred us to Microsoft.  Our Microsoft reps keep referring us to a knowledge base article that doesn't quite do what we want.  After following the instructions, the Phishing button is still there, it just does not send the reported email anywhere.  There does not seem to be a way to make the default Microsoft Phishing button go away.

    0
    Hozzászólások műveletei Permalink
  • Avatar
    Jean Schuck

    Thanks Matt for your response. I spoke to my Exchange team and they mentioned we had no control over the MS button.  :-(   It is confusing our employees. However, the team was able to redirect any emails reported via the MS button to our Security Operations Center and I'm hoping I can redirect to our PhishER inbox once we have that setup.

    Jean

     

    0
    Hozzászólások műveletei Permalink
  • Avatar
    Matt Hotujec

    I thought I'd follow up on this in case others find it helpful.

    While researching an unrelated issue recently, I ran across this document where Microsoft confirms that you cannot disable their built in phish reporting tool:

    https://docs.microsoft.com/en-us/microsoft-365/security/office-365-security/report-junk-email-and-phishing-scams-in-outlook-on-the-web-eop?view=o365-worldwide

     

    We have done the following to help guide users to the right place:

    Configure an O365 alert to be sent to an internal email address when people use the Microsoft phish reporting tool.  Then configure a Flow (Power Automate) to extract the email address of the person who used the MS phish reporting tool and send a new email to them explaining that the tool they used sends the information to Microsoft and not to us, so we can't analyze the message, and providing a link to a sharepoint document that explains how to use the Phish Alert button on various platforms (Outlook app, OWA, and Outlook mobile), as well as instructions for adding the PAB to the message surface so it is easier to use.

    0
    Hozzászólások műveletei Permalink

Kérjük, Belépés hagyjon megjegyzést.