Introduction
Exchange Online Protection (EOP) uses a multi-layered approach to protect users from various threats, including:
- Phishing
- Spoofing
- Spam
- Bulk email
- Malware
Microsoft Defender for Office 365 (formerly Advanced Threat Protection (ATP)) extends the protection provided by EOP by filtering targeted attacks that could pass through EOP’s line of defenses. These attacks include:
- Advanced threats such as zero-day attacks in email attachments and Office documents.
- Time-of-selection protection against malicious URLs.
When integrated together, EOP and Microsoft Defender for Office 365 represent the anti-malware pipeline in Microsoft 365. These products provide the most efficient level of protection against commodity and advanced targeted threats.
Note
Microsoft Defender for Office 365 is available with Microsoft 365 Enterprise E5. If an organization is using another Microsoft 365 Enterprise subscription, it can purchase Microsoft Defender for Office 365 as an add-on.
This module focuses on Microsoft Defender for Office 365. This product protects users from advanced threats through features such as Safe Attachments and Safe Links. It also generates reports that provide administrators with insight into attacks targeting their tenants through email.
This module introduces you to the Microsoft Defender for Office 365 feature set. These products include Safe Attachments, Safe Links, and creating outbound spam filters. Spam filters enable organizations to set email sending limits. Microsoft Defender can block users who exceed these sending limits from sending email. You can unblock the users in the Microsoft Defender portal.
The module concludes by showing you how to submit messages, URLs, and attachments to Microsoft for analysis. You learn how to track the status of your submissions in the Microsoft Defender portal. You also learn what happens in the Tenant Allow/Block List when you report something to Microsoft as a false positive.