Thibault CHÂTIRON

Cybersecurity

Required Configuration for Phishing Simulation emails

Exchange online protection (EOP)/ Defender for Office 365 (MDO) customers who want to send phishing simulation emails, need to configure advance delivery policy for optimal behavior. This policy will ensure that emails that match your conditions are delivered unfiltered to the Inbox and that safe links time of click protection and post-delivery actions are disabled. …

Outlook web: Replacing “Activity-Based Authentication Timeout” with “Idle Session Timeout for Microsoft 365

The Activity-Based Authentication Timeout for Outlook on the web will be replaced by Idle Session Timeout for Microsoft 365. When this will happen: Microsoft expect to complete by mid-February 2024. How this affects your organization: At the end of 2023, we will be ending support for Activity-Based Authentication Timeout, at that point all organizations who …

Retiring “MDE Settings” and “New version” options from Threat Explorer

Microsoft will be retiring the “MDE Settings” and “New version” options from Threat Explorer as they work to clean up and streamline the user experience. When this will happen: Microsoft expect to complete by late December 2023. How this will affect your organization: Users and Administrators will no longer see the “MDE Settings” and “New …

Microsoft Purview | Data Lifecycle Management and Records Management – Microsoft Graph APIs for extensibility

As a part of the extensibility vision of Microsoft and first release to Microsoft Graph, Microsoft is introducing three new APIs for retention labels, events, and event types in the Microsoft Graph beta environment. These APIs will enable you to customize and extend on what we have built in the product so far. These APIs …

Ability to change retention period on labels set to start retention based on “When items were labeled”

Previously, admins could not change the retention period set on existing labels configured to start retention from when items were labeled. This feature will remove this restriction, and the resulting behavior will be consistent with other retention label types.   When this will happen: Rollout will begin in late December 2023 (previously late November) and is …

Exchange auto-labeling supports non-mail enabled security groups

Service side auto-labeling now supports scoping of Exchange auto-labeling to non-mail enabled security groups. When this will happen: Rollout is expected to be complete by late November.  How this will affect your organization: Admins can create new or edit existing auto-labeling policies to include new Exchange locations for non-mail enabled security groups. What you need …

Customized Retention Policies: Long-Term Retention

Microsoft is rolling out a new feature to enable customers with Microsoft Purview Audit (Premium) and the 10-Year Retention Add-on to create additional customized retention policies. When this will happen: Rollout to general availability in the worldwide clouds will begin in early December and is expected to be complete by late December. How this will …

Prepare for device-bound passkeys in Microsoft Entra ID (changes to FIDO2 and Windows Hello for Business)

Beginning January 2024, Microsoft Entra ID will support device-bound passkeys stored on computers and mobile devices as an authentication method in preview, in addition to the existing support for FIDO2 security keys. This enables your users to perform phishing-resistant authentication using the devices that they already have. Microsoft will be expanding the existing FIDO2 authentication methods policy …

Data Loss Prevention- simulation mode for DLP policies

Simulation mode in DLP provides DLP admins with an isolated experience to try a DLP policy, assess its impact, and build confidence in the policy efficacy to eventually reduce the time to policy enforcement. Simulation mode is an enhancement to the existing test mode behavior to help Admins evaluate new policies confidently. When this will …

Microsoft Purview Insider Risk Management: Public preview of browsed to generative AI websites indicator

Coming soon, Microsoft Purview Insider Risk Management will be rolling out the public preview of browsed to generative AI websites indicator. When this will happen: Rollout will begin mid-December and is expected to be complete by early January.  How this will affect your organization: With this update, we are adding a new indicator, “browsed to …

Announcing the general availability of new Teams on web for Edge and Chrome

November 17th, Microsoft is announcing the general availability of new Teams on web for Edge and Chrome. How this will benefit your organization: When will this happen: New Teams on web begins rolling out today. How this will affect your organization: What you can do to prepare: Visit the support article or download resources to learn how to get …

SharePoint eSignature electronic signature service

SharePoint eSignature is Microsoft’s first party electronic signature service which allows users to easily request eSignatures on a PDF document via SharePoint online.  Signers can easily add their electronic signature. Signed documents are saved securely back to SharePoint. When this will happen: Standard Release: Microsoft will begin rolling out to the US in late November …

Microsoft to stop honoring mail flow rules tracking user reporting

Microsoft will be retiring the mail flow rule which help you track end user reporting. This change is being made to improve the availability and reduce the latency of the submission service so that you can respond to threats (false negatives) more quickly and efficiently. When this will happen: Microsoft will be gradually rolling this …

Copilot coming to Windows 10

November 16th, Microsoft announced that Copilot in Windows (in preview) is coming to Windows 10. Microsoft is revisiting his approach to Windows 10 and will be making additional investments to make sure everyone can get the maximum value from their Windows PC including Copilot in Windows.  Copilot in Windows will be available soon for Windows Insiders in the Release …

What’s new with Microsoft Entra ID Protection

In this increasingly digital world, identity is the most attacked surface area, and the sophistication and frequency of attacks continue to rise. Manual investigations and responses can’t keep pace. We need to think differently about how we protect identities from compromise and respond rapidly to emerging threats.   Microsoft Entra ID Protection (recently renamed from Azure …

Microsoft Defender for Office 365: DMARC Policy Handling

In order to better protect our customers from exact domain spoofing attacks and improve deliverability of email, Microsoft is making changes to how we handle DMARC p=reject and p=quarantine. For the enterprise customers, Microsoft is making updates to how DMARC policy-based reject can be handled. This change will help Security Administrators be able to choose …

Microsoft Purview Information Protection: Auto labeling (for files at rest in SharePoint Online) can now label PDF files

Auto labeling (for files at rest in SharePoint Online) will soon label PDF files. When this will happen: Preview: Rollout to public preview will begin in mid-July 2023 and expect to complete by early August 2023.   How this will affect your organization: Once the changes are rolled out to your tenant, the following are …

Microsoft Purview compliance portal: PDF files encrypted with sensitivity label can be searched and eDiscovered

Public preview alert. We have started rolling out support for labeled PDF files in SharePoint Online. SharePoint now supports search, eDiscovery, DLP for sensitivity label encrypted PDFs. The sensitivity column will start showing the label names for newly uploaded PDF files. When this will happen: Preview: This rollout is underway and expected to complete by …

Microsoft Purview Information Protection: Discover and co-author documents labeled with user-defined permissions

Currently rolling out in public preview, SharePoint and OneDrive will support discovery and coauthoring of files labeled with user-defined permissions.  When this will happen: Rollout to public preview began in mid-June and is expected to be complete by early September. Standard release will begin in mid-September 2023 (previously early September) and is expected to be …

Reminder: Microsoft Defender for Office Empowers End Users to Report Suspicious Messages in Microsoft Teams

The ability for Microsoft Teams users to report internalchats, channels and meeting conversations within Teams as a security risk will be turned ON by default. Security risk messages could include ones that contain phishing or spam or malicious content, such as phishing URL or malware file, spam content. To learn how end users can report, …