Enhance Email Security Understanding User Reporting in Outlook
In Microsoft 365 organizations using Exchange Online, Outlook users can report phishing and suspicious emails directly. This feature, enabled by the 'Report' button, is a crucial tool for maintaining a secure email environment. Admins play a vital role in configuring this feature and reviewing user-reported messages.
This guide provides admins with the knowledge to effectively utilize the built-in 'Report' button in Outlook, configure reporting settings, and leverage the power of Microsoft Defender for Office 365. This helps to quickly identify and respond to potential threats.
The Built-in Using the Report Button in Outlook
The 'Report' button is a key feature, available in various Outlook versions, empowering users to report potentially harmful emails. The availability depends on factors such as user reporting being turned on and the correct configuration in user reported settings.
Supported Outlook versions include Outlook for Microsoft 365 (Current, Monthly Enterprise, and Semi-Annual Channels), Outlook for Mac, iOS, Android, and the new Outlook for Windows, plus Outlook on the web. The 'Report' button supports reporting messages from shared mailboxes by a delegate.
Actionable Reporting Reporting Junk and Phishing Messages
Users can report messages as junk or phishing from any email folder (except the Junk Email folder for junk reports). Select one or more messages, choose 'Report', and then select 'Report phishing' or 'Report junk'.
Depending on the organization's settings, reported messages are sent to a reporting mailbox, to Microsoft, or both. Actions taken include moving junk messages to the Junk Email folder and adding the sender to the Blocked Senders list, and deleting reported phishing messages.
“Empowering users to report suspicious emails is a critical step in building a robust defense against phishing and other threats.
Microsoft Security Team
Key Resources for Admins
Enhance your understanding and configuration of email security.
User Reported Settings
Configure how user-reported messages are handled in your organization.
Submissions Page
Review user-reported messages and manage email submissions.
Training Module
Enhance your email protection using Microsoft Defender for Office 365.
Correcting Mistakes Reporting Messages as 'Not Junk'
In the Junk Email folder, users can report legitimate emails as 'Not junk'. This helps to refine the spam filtering and ensure important messages reach the inbox.
When a message is marked as 'Not junk', it is moved from the Junk Email folder to the Inbox, ensuring that the user receives the email. This functionality helps to improve the accuracy of spam filtering.
Administrator View Reviewing User-Reported Messages
Admins can review reported messages through the User reported tab on the Submissions page in the Microsoft Defender portal. This provides insight into potential threats and helps to improve email security.
For more information, admins can access resources such as 'View user reported messages to Microsoft.' Additional information is available in the video showing how to use Microsoft Defender for Office 365 to investigate user-reported messages and apply remediation actions.