Microsoft 365 | Thibault Chatiron

Microsoft Defender for Office 365: Four override alerts retire in August 2024

Microsoft Defender for Office 365 is retiring four legacy override alerts that are now mostly redundant due to Secure by default. With Secure by default, ZAP (zero-hour auto purge) blocks high confidence phishing emails by default despite the legacy overrides. The four alerts are: As part of the deprecation and rollout, When is the change? Microsoft plan to …

Use sensitivity labels in Microsoft 365 apps when connected experiences are disabled

Your organization can now disable connected experiences for privacy concerns without impacting data security policies, such as sensitivity labels. Services associated with Microsoft Purview (sensitivity labels, rights management, and so on) are no longer controlled by policy settings to manage privacy controls for Microsoft 365 apps. Instead, these services will rely on their existing security admin controls in Purview …

Decoupling Microsoft Purview Data Loss Prevention (DLP) Process form Microsoft Defender for Endpoint on Windows Devices

If you use a Firewall (Windows or 3rd party), non-Microsoft anti-malware, or application control solution and had to add the Microsoft Defender for Endpoint process to an allowlist to run, then an additional process (“MpDlpService.exe”) will need to be added to your allowlist. Starting June 2024, we will be decoupling the Microsoft Purview Data Loss …

New eDiscovery Hold reports

Coming soon: For Microsoft Purview, Microsoft will release a tenant-wide Hold report in eDiscovery (Premium). When this will happen: General Availability (Worldwide): Microsoft will begin rolling out mid-May 2024 and expect to complete by early June 2024. How this will affect your organization: The Hold report in eDiscovery (Premium) will let users with eDiscovery Administrator …

Enhanced content extraction and file type coverage for DLP on Windows devices

Microsoft Purview: Microsodt announced upcoming enhancements to Microsoft Purview Data Loss Prevention (DLP). With the forthcoming update, the capability to scan, classify, and protect sensitive content on Windows endpoint devices will be significantly expanded. The number of supported file types will increase from approximately 40 to over 100, aligning endpoint coverage with other platforms like …

Reported mailbox notifications messages subject change

Currently, in Microsoft Defender for Office 365, when a notification message is reported by an end user and arrives at the reporting mailbox, the subject lines begin with: Moving forward, the subject lines of notification messages reported by end users will start with This change is being made to ensure readability and enable you to create better …

Enhanced incident communication with DLP email templates

Coming soon for Microsoft Purview Data Loss Prevention (DLP): Enhance your DLP incident management with the new send email notification remediation action and customize email templates in Purview DLP and Defender. Use dynamic variables and tokens to easily create and maintain consistent and efficient email communications, complete with an audit trail. Utilize these email templates to take …

Exfiltration of business sensitive data to free public domain emails

Coming soon, Microsoft Purview Insider Risk Management will roll out exfiltration of business sensitive data to free public domain emails. When this will happen: Public Preview: Microsoft will begin rolling out mid-May 2024 and expect to complete by late May 2024. General Availability: Microsoft will begin rolling out late June 2024 and expect to complete …

Enhanced Submissions experience from Email entity and Summary panel

In Microsoft Defender XDR for Office 365, Microsoft is enhancing the Submit to Microsoft for review options on the Email entity page and Summary panel so admins can convey whether they are submitting for a second opinion or submitting to confirm a clean or a malicious verdict. In the same workflow, we are also introducing the Entities allow option that Security …

Microsoft Copilot in Outlook: Logging and Microsoft Purview eDiscovery support

Microsoft Outlook has added additional logging and Microsoft Purview eDiscovery support for Copilot in Outlook features that have already been released, and future Copilot in Outlook features as well. These features will be available in Outlook for Mac, web, iOS, Android, and the new Outlook for Windows. When this will happen: General Availability (Worldwide): Microsoft …

Azure Information Protection Add-in for Office – it is the end

The Azure Information Protection (AIP) Unified Labeling add-in for Office is retired on April 11th, 2024. When this will happen: Important retirement milestones are: How this will affect your organization: To continue using sensitivity labels powered by Microsoft Purview Information Protection in Office applications, you must transition to the built-in labeling experience in Microsoft 365 …

Microsoft Teams: New tenant federation setting to block all subdomains of domains in blocklist

In Microsoft Teams, Microsoft has introduced a new Tenant Federation setting to block all subdomains of domains in the federation Block list. If your organization is using a Block list to protect your users from malicious or other domains, you should enable this new setting to also protect users from all related subdomains without manually …

Password protected download for quarantined emails from Email Entity

Microsoft is introducing password protected downloads of email messages from the Email Entity Summary Panel in Microsoft Defender for Office 365. Today, password protected downloads are available from the Quarantine experience. When this will happen: General Availability: Microsoft will begin rolling out mid-March 2024 and expect to complete by late March 2024. How this will …

Microsoft Defender for Office 365: New Quarantine release details

In Microsoft Defender for Office 365, Microsoft is rolling out new details on who or what is responsible for releasing a message from quarantine. These details will now be included in the email summary flyout panel accessible from the Quarantine page. When this will happen: General Availability : Microsoft will begin rolling out late March …

[Public Preview] Insider Risk Management: Global exclusions

Microsoft Purview Insider Risk Management will be rolling out public preview of Global exclusions in the in the Microsoft Purview compliance portal. When this will happen: Public Preview: Microsoft will begin rolling out early May 2024 and expect to complete by mid-May 2024. General Availability: Microsoft will begin rolling out mid-August 2024 and expect to complete by …

Microsoft Purview Insider Risk Management- policy wizard enhancements [Public Preview]

Coming soon, Microsoft Purview Insider Risk Management will be rolling out a public preview of policy wizard enhancements. Microsoft Purview Insider Risk Management correlates various signals to identify potential malicious or inadvertent insider risks, such as IP theft, data leakage, and security violations. Insider Risk Management enables customers to create policies based on their own …

Data Loss Prevention – Enriched Data Loss Prevention (DLP) alert email notifications for DLP admins

There is now increased information in the alert email notification sent to the Data Loss Prevention (DLP) admins upon a DLP policy match. Previously a DLP alert email only included the user activity and the type of sensitive information matched in the alert. Now, DLP admins will get additional context such as alert ID, policy …

eDiscovery – Graph API for purge enhancements to include Exchange items and expand purge limit from 10 to 100

The Microsoft Graph eDiscovery premium API that supports Purge for Teams messages will now expand to support items stored in Microsoft Exchange including emails, calendar invitations, and more. In addition to expanding to support Exchange email items and Microsoft Teams, the limit for each purge action per unique location will expand from 10 items per …

[MDO] Quarantine End User Allow and Block list management

In Microsoft Defender for Office 365, Microsoft is updating the way end users allow and block emails in Exchange Online. When this will happen: Microsoft will begin rolling out late April 2024 and expect to complete by mid-May 2024. How this will affect your organization: With one click, end users will block emails from unwanted …

Data Loss Prevention: Turning on DLP analytics

In Microsoft Purview, Data Loss Prevention (DLP) analytics is a feature that enables you to analyze data protection challenges, gaps, policy, and posture enhancement possibilities in the organization. Use intelligent Purview features to explore these challenges and resolve them in a few easy steps. After you turn on analytics, you can review analytics and recommendations …

M	T	W	T	F	S	S
1	2	3	4	5	6	7
8	9	10	11	12	13	14
15	16	17	18	19	20	21
22	23	24	25	26	27	28
29	30	31

Cookie	Duration	Description
__gads	1 year 24 days	The __gads cookie, set by Google, is stored under DoubleClick domain and tracks the number of times users see an advert, measures the success of the campaign and calculates its revenue. This cookie can only be read from the domain they are set on and will not track any data while browsing through other sites.
_ga	2 years	The _ga cookie, installed by Google Analytics, calculates visitor, session and campaign data and also keeps track of site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognize unique visitors.
_gid	1 day	Installed by Google Analytics, _gid cookie stores information on how visitors use a website, while also creating an analytics report of the website's performance. Some of the data that are collected include the number of visitors, their source, and the pages they visit anonymously.
CONSENT	2 years	YouTube sets this cookie via embedded youtube-videos and registers anonymous statistical data.

Cookie	Duration	Description
ANONCHK	10 minutes	The ANONCHK cookie, set by Bing, is used to store a user's session ID and also verify the clicks from ads on the Bing search engine. The cookie helps in reporting and personalization as well.
IDE	1 year 24 days	Google DoubleClick IDE cookies are used to store information about how the user uses the website to present them with relevant ads and according to the user profile.
MUID	1 year 24 days	Bing sets this cookie to recognize unique web browsers visiting Microsoft sites. This cookie is used for advertising, site analytics, and other operations.
test_cookie	15 minutes	The test_cookie is set by doubleclick.net and is used to determine if the user's browser supports cookies.

Cookie	Duration	Description
_clck	1 year	No description
_clsk	1 day	No description
ApplicationGatewayAffinityCORS	session	No description available.
CLID	1 year	No description
GoogleAdServingTest	session	No description
LiSESSIONID	session	No description available.
LithiumUserInfo	past	No description
LithiumUserSecure	past	No description
LithiumVisitor	1 year	No description available.
original_req_url	past	No description
SM	session	No description available.
SRM_B	1 year 24 days	No description available.

Category: Microsoft 365

Microsoft Defender for Office 365: Four override alerts retire in August 2024

Use sensitivity labels in Microsoft 365 apps when connected experiences are disabled

Decoupling Microsoft Purview Data Loss Prevention (DLP) Process form Microsoft Defender for Endpoint on Windows Devices

New eDiscovery Hold reports

Enhanced content extraction and file type coverage for DLP on Windows devices

Reported mailbox notifications messages subject change

Enhanced incident communication with DLP email templates

Exfiltration of business sensitive data to free public domain emails

Enhanced Submissions experience from Email entity and Summary panel

Microsoft Copilot in Outlook: Logging and Microsoft Purview eDiscovery support

Azure Information Protection Add-in for Office – it is the end

Microsoft Teams: New tenant federation setting to block all subdomains of domains in blocklist

Password protected download for quarantined emails from Email Entity

Microsoft Defender for Office 365: New Quarantine release details

[Public Preview] Insider Risk Management: Global exclusions

Microsoft Purview Insider Risk Management- policy wizard enhancements [Public Preview]

Data Loss Prevention – Enriched Data Loss Prevention (DLP) alert email notifications for DLP admins

eDiscovery – Graph API for purge enhancements to include Exchange items and expand purge limit from 10 to 100

[MDO] Quarantine End User Allow and Block list management

Data Loss Prevention: Turning on DLP analytics

Thibault CHÂTIRON

Follow Blog via Email

Recent Posts

Categories

Archives