Now, admins with Advanced Threat Protection can;

  • Policy or end user configurations (e.g. transport or mail flow rules, custom policy settings, junk mail folder settings) that can be improved to block delivery of malware, phish, or spam.
  • Policies and configurations enhancing protection for users targeted by malware and phishing campaigns in an organization.
  • Views into users who violate large volumes of Office 365 Data Loss Prevention (DLP) policies.
  • Anomaly insights showing unusual trends in your DLP policy violations

Also, introducing a new report of DLP policy matches on a per item level enabling easier identification of documents or emails which violate policies.

Soon Microsoft will release an enhanced Threat Protection status trending report, offering a single view with drill downs into malicious emails identified within the organization, including detection details for malware and phish.

threat protection

Recently announced the extension of Office 365 Advanced Threat Protection (ATP) to protect files in SharePoint Online and OneDrive for Business. Now extend quarantine capabilities to files stored in these applications. This includes download, release, report and delete features in quarantine.

  • ‘Release’ removes the end user block on the file
  • ‘Delete’ removes the file from quarantine; however, the file is still blocked in SharePoint Online, OneDrive for Business and Microsoft Teams and must be deleted from the respective document libraries in these services to preserve content specific audited activities