Login Authenticity Seal [CHK-1110]
The Login Authenticity Seal is a visual feature on the official Microsoft 365 login page that helps users verify they are not on a malicious phishing site.
Rationale
AiTM attacks create fake login pages that look identical to legitimate Microsoft 365 login pages, bypassing traditional security measures like multi-factor authentication. The Login Authenticity Seal allows users to validate the authenticity of the page themselves, reducing uncertainty and preventing productivity loss.
Fix
An automated fix is available through Attic. This fix does not rely on permissions in your Microsoft environment because the configuration is fully managed within the Attic system. It will be offered regardless of your onboarding type in the Microsoft environment.
To fix it yourself, contact your Attic operator to enable the Login Authenticity Seal feature for your environment. Note: It may take up to 24 hours for the feature to be fully activated.
Impact
- Users will see a visual seal on legitimate Microsoft 365 login pages.
- The seal helps users verify they are on the correct login page, using the DSCM app in Microsoft Teams and Outlook.
- Improved security awareness for users.
We recommend introducing these measures along with a short training about the various visual cues Attic introduces in the login screen and how users should respond to them.