22 questions
Request for Retention Policy Details and Restoration of Historical Phishing Simulations in MS365 Attack Simulator.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(249.60000000000002, 61%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESG%3C/text%3E%3C/svg%3E)
Sobana Gayathiri Elevated
0
Reputation points
Hello,
Could you please provide clarity on the retention period for launched phishing simulations in the Microsoft 365 Attack Simulator tool?
We have been using the simulator consistently for the past 4–5 years as part of our monthly cyber awareness programme. However, we’ve recently noticed that several simulations are no longer visible in the portal. Specifically, all simulations and content library entries prior to October 2023—including those labelled [Q3-P3-2023] and earlier—appear to have been removed.
This is a concern for us as we rely on these records for internal audits and future reference. We would like to understand:
- What is the default retention period for phishing simulations in the Attack Simulator?
- Is there a way to restore or archive older simulations for compliance and audit purposes?
- Can we configure or request extended retention for future simulations?
We would appreciate any guidance or support in recovering the missing data or implementing a solution to prevent future loss.
Thank you,
Sobana Gayathiri
Microsoft Copilot | Microsoft Security Copilot
Sign in to answer