[THEME] Phishing
The Phishing theme optimizes the anti-phishing protection in your Microsoft 365 environment. Phishing remains the most common initial attack vector for cybercriminals targeting organizations.
What does Attic do?
Attic verifies and monitors a range of anti-phishing settings in Microsoft 365 to ensure your employees are protected against phishing attempts via email.
The checks in this theme cover:
- Anti-phishing policies are enabled and properly configured
- MailTips are active to warn users about suspicious messages
- Phishing warning-based MailTips are enabled
- Safe Links protection is turned on to check URLs in real-time
- External email warnings are displayed to users
- Inbox rules and forwarding rules are baselined to detect suspicious changes
Why is this important?
Phishing emails are designed to trick employees into revealing credentials, installing malware, or transferring money. By enabling multiple layers of anti-phishing protection, you significantly reduce the chance that a phishing email reaches your employees and that they fall victim to it.
Checks in this theme
| ID | Check |
|---|---|
| CHK-1063 | Anti-phishing policy |
| CHK-1048 | Outlook MailTips |
| CHK-1058 | Anti-Phishing mailtips |
| CHK-1059 | Safe Links |
| CHK-1023 | Labels for external mail |
| CHK-1071 | Suspicious Mailbox Rules Detection |
| CHK-1070 | Mailbox Forwarding Baseline Check |