Menu

  • Alerts
  • Incidents
  • News
  • APTs
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Threat Actors
  • Tutorials

Useful Tools

  • Password generator
  • Report an incident
  • Report to authorities
No Result
View All Result
CTF Hack Havoc
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
Hall of Hacks
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
No Result
View All Result
Hall of Hacks
CyberMaterial
No Result
View All Result
Home News

Microsoft Responds to Spam Email Rule

October 19, 2023
Reading Time: 2 mins read
in News

Microsoft responded to an issue caused by a faulty anti-spam rule that triggered a flood of outbound emails mistakenly flagged as spam to Microsoft 365 admins’ inboxes. The problem, tracked as EX682041, affected Exchange Online users globally, marking all external emails as spam. This incident began around 09:40 AM PDT and took approximately 14 hours for Microsoft to resolve.

During the mitigation process, emails incorrectly labeled as spam were cleared from quarantine in affected tenants, and Microsoft provided guidance for admins to prevent similar issues in the future by disabling the “Send a copy of suspicious outbound” setting in the default outbound spam policy.

Admins can take steps to avoid another influx of mislabeled spam emails in their inboxes by adjusting the default outbound spam policy settings in Microsoft 365. Microsoft advises administrators to uncheck the “Send a copy of suspicious outbound messages” option in the Anti-Spam outbound policy.

While the false-positive spam messages were removed from quarantine, administrators should also ensure that no users were added to the blocked senders list due to the anti-spam issue. Users blocked because of the false-positive incident can be reinstated through the Restricted entities page in the Microsoft 365 Defender portal, typically within one hour, though transient technical issues could cause longer delays.

This incident underscores the importance of managing and fine-tuning anti-spam rules to avoid potential disruptions in email communication, especially for administrators handling sensitive correspondence in Microsoft 365. Microsoft acted quickly to address and resolve the issue, emphasizing the significance of proactive measures to prevent similar incidents in the future.

References:
  • After extensive monitoring and follow-up analysis of our mitigation and replay efforts of the previously miscategorized spam messages
  • Remove a user from the Restricted entities page in the Microsoft 365 Defender portal
Tags: Anti-SpamCyber NewsCyber News 2023CybersecurityEmailsEX682041Exchange OnlineMicrosoftMicrosoft 365October 2023Scam Emails
ADVERTISEMENT

Related Posts

SAP S4hana Exploited Vulnerability

US Allies Push For Sboms In Security

September 5, 2025
SAP S4hana Exploited Vulnerability

Reward For Russian FSB Hackers

September 5, 2025
SAP S4hana Exploited Vulnerability

US Sues Robot Toy Maker Over Data

September 5, 2025
Google Fined For Cookie Violations

Google Fined For Cookie Violations

September 4, 2025
Google Fined For Cookie Violations

Youtube Cracks Down On Password Sharing

September 4, 2025
Google Fined For Cookie Violations

Moscow Hires Hackers Behind School Breach

September 4, 2025

Latest Alerts

SAP S4hana Exploited Vulnerability

Virustotal Finds Undetected SVG Files

Russian APT28 Deploys Outlook Backdoor

CISA Flags TP Link Router Flaws

Lazarus Hackers Exploit ZeroDay, Deploy Rats

Google Patches 120 Flaws In Android

Subscribe to our newsletter

    Latest Incidents

    North Korean Hackers Fake Interviews

    Bridgestone Confirms Cyberattack

    Cybersecurity Firms Hit By Breach

    Salesloft Drift Attacks Hits Vendors

    Jaguar Land Rover Hit By Cyber Incident

    Hackers Use Grok Ai To Spread Malware

    CyberMaterial Logo
    • About Us
    • Contact Us
    • Jobs
    • Legal and Privacy Policy
    • Site Map

    © 2025 | CyberMaterial | All rights reserved

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials
    • Advanced Persistent Threats
    • Threat Actors
    • Report an incident
    • Password Generator
    • About Us
    • Contact Us
    • Advertise with us

    Copyright © 2025 CyberMaterial