Every passing day, we could witness a lot of cases where email spoofing and phishing attacks are registered. Therefore, every organization wants its employees should be extra careful while sending or receiving emails that have confidential sensitive information in it. Email spoofing, when it takes place leaves the victim in the lurch and they cannot find a possible way to get rid of it. In most cases where email spoofing is witnessed, it is found out that email protocols were inherently insecure by default.
So, if you are an Office 365 user and wish to stay protected from this, then you should imply some techniques to stop email spoofing in Office 365. Most of the time, users are unaware of it, therefore it is important for an organization to make them aware of what email spoofing is and how is it going to affect their business if preventive measures are not carried out at the right time. Although you can immediately block someone if he sends you spam, sometimes legitimate senders can also be spoofing.
What are Microsoft spoof email settings?
When you apply spoof email settings in your Office 365 mailbox, the spoof intelligence framework or spoof intelligence policy makes sure that the spoofed email sent by legitimate senders doesn’t get caught up in EOP spam filters. It also makes sure that it doesn’t get caught up in external email systems. Along with this, it ensures that you stay one step ahead of spam or phishing attacks.
In-Office 365, you can manage spoof intelligence settings by navigating to the ‘Security & Compliance Center’ and making the necessary changes in it. If this doesn’t work, then you may use the PowerShell method on it.
Pre-requisites for Office 365 bypass spoofing
You can directly go to the Security & Compliance page, by navigating to protection.office.com from your preferred web browser. This will open the Office 365 anti-phishing policy page so that you can start with the customizing the settings.
If you wish to customize settings using an Online PowerShell, then you can do so by navigating to the PowerShell page of www.office.com/setup page.
You also need to assign some permissions before you can start:
- To make any changes, either you have to enable or disable spoof intelligence. For this purpose, you have to be one of the administrators. For example, organization management, security administrations, or hygiene Management.
- In case you wish to imply read-only access, it is important that you are a member or a security reader in the center. You can also be in View-Only Organization Management.
Steps to customize Office 365 anti-phishing policy settings
Follow the steps given below to customize email spoof settings in Office setup for your internal domains:
- First of all, you need to navigate to the Security & Compliance Center page.
- From here, go to the Threat Management section.
- After this, click on the ‘Policy’ option.
- Further, you have to tap on the option of reading as ‘Anti-spam’.
- When the anti-spam page opens, click on the down arrow to open ‘Spoof Intelligence Policy’.
- Now choose from one of the two options, i.e. to review new senders or to show senders that you already reviewed.
- Now, here you need to select ‘Your Domains’ option from the two options given on the page.
- This will customize settings for the senders spoofing users’ in your internal domains.
- Again, click on the down arrow in the ‘Allowed to spoof?’ column.
- Chose ‘Yes’ if you wish to allow spoofed senders.
- Else, choose ‘No’ if you wish to mark the message as spoofed one.
- After making the desired changes, click on the ‘Save’ option.
How to prevent external email spoofing in an exchange organization?
The easy instructions to prevent external email spoofing in an exchange organization are as follows:
- To begin the process, go to the Security & Compliance Center page.
- After this, go to the Threat Management section.
- Now, click on the ‘Policy’ option.
- Next, you have to tap on the option of reading as ‘Anti-spam’.
- On the anti-spam page, click on the down arrow to open ‘Spoof Intelligence Policy’.
- Now choose to review new senders or to show senders that you already reviewed.
- Next, select the ‘External Domains’ option from the two options.
- Finally, allow the spoof by choosing the ‘Yes’ option and save the changes.
By now, you must have learned the steps to stop email spoofing in Office 365. Users are always suggested to be careful and diligent about spoofing and phishing protection.