Essential Settings for EOP and Office 365 ATP security

Techtron has been migrating to and managing Office 365 enviroments for some time now.  One of the most common scenarios we find is companies have left many of the security features set to default, which according to Microsoft and other leading experts is not recomended.  These settings are often neglected because everything seems to “just work” out of the box.  However many companies have suffered downtime and data loss as a result of poorly configured Office 365 enviroments.

Due to how often we found ourselves securing clients cloud enviroments we decided to create some Office 365 Securty packages.  We broke them down into two categories.  Category one is the once off setup of the enviroment.  This could be for a new Mircorost Tennant or an existing tennant.  The second category is to review the configuration and logs on a regular basis.  These services help with both security and compliance.  If you would like to know more you can contact us by clicking here.

To our suprise we came across an interesting announcement.  Effective 9th December 2019, Microsoft will be implimenting by default some of the settings we have identified and included in our security package.  This is great news for the millions of Office 365 users.  As it will increase the baseline security for all Office 365 users.  For companies who are security consious or have any compliance requiremts we would recommend speaking to a security specialist or chatting to us about the additional steps you can take to improve your security above the baseline.

For details of the microsoft announcement see extract from Microsoft below, or to contact us for more information click here.

Microsoft Announcement

We’re making some changes to your default Exchange Online Protection (EOP) settings on December 9, 2019.

How does this affect me?

You are receiving this message because your tenant users are protected with EOP. We believe that these changes in the mail filtering configurations will help prevent unwanted mail from reaching employee inboxes in most situations.

We’re making the following changes to your anti-spam, anti-phish, and anti-malware policies:

  • Set Anti-spam Policy\High confidence spam detection action to Quarantine message
  • Set Anti-spam Policy\Phishing email detection action to Quarantine message
  • Set Anti-spam Policy\High confidence Phish email detection action to Quarantine message
  • Set Anti-spam Policy\Set Bulk email threshold to 6 (or keep if less)
  • Set Anti-spam Policy\Quarantine retention period to 30 days (or keep if more)
  • Set Anti-spam Policy\Safety Tips to On
  • Set Anti-spam Policy\End user spam notification frequency to Enabled
  • Set Anti-spam Policy\Zero Hour auto purge to On
  • Set Anti-spam Policy\MarkAsSpamBulkMail to On
  • Set Anti-malware Policy\Malware Detection Response to No
  • Set Anti-malware Policy\”Common Attachment Type Filter” for blocking suspicious file types to On
  • Set Anti-malware Policy\Malware Zero-hour Auto Purge to On
  • Set Anti-Phish Policy\Enable antispoofing protection to On
  • Set Anti-Phish Policy\Enable Unauthenticated Sender (tagging) to On

What do I need to do to prepare for this change?

You do not need to do anything to prepare for this change nor will you need to do anything after this change is made.

Note: once changes have been made, you can change them back, but this is not recommended since we believe that these new settings will better protect your users.

Learn more: Recommended settings for EOP and Office 365 ATP security

Additional information

 

This email is delivered on behalf of the sender. Microsoft Corporation is not responsible for the content in this email. If you have any concerns about the content please contact the sender directly. For more information about the data collected by Microsoft Corporation please see the Microsoft Privacy Statement.