Services
Affected Platforms
Summary
Microsoft Defender for Office 365 will allow admins to provide intent when submitting messages, attachments, or URLs. This will streamline Microsoft's analysis and result in more accurate analysis. The change will start rolling out in mid-February 2024 and should be complete by late March 2024. This feature will not impact any existing submissions, filtering, or grouping functionality in submissions. End user reporting and admin submission of Teams messages is available only in Microsoft Defender for Office plan 2.
Details
Updated February 25, 2024: We have updated the rollout timeline below. Thank you for your patience.
This applies to customers with Exchange Online Protection, Microsoft Defender for Office plan 1 or plan 2 service plans.
Soon, admins can provide intent when submitting messages (email and Microsoft Teams), email attachments, or URLs to Microsoft.
Admins can convey whether they are submitting for a second opinion from Microsoft or they are submitting because a true malicious message was missed by Microsoft. With this change, Microsoft analysis of admin submitted messages (email and Microsoft Teams), URLs, and email attachments will be further streamlined and will result in more accurate analysis.
This message is associated with Microsoft 365 Roadmap ID 183907
When this will happen:
This change will start rolling out in mid-February 2024 (previously mid-December) and should be complete by late March 2024 (previously late February).
How this will affect your organization:
You will see this experience when you start making new admin submissions from Submissions, Threat Explorer, or Quarantine.
What you need to do to prepare:
This new feature will not impact any existing submissions, filtering, or grouping functionality in submissions.
Note: Today, end user reporting and admin submission of Teams messages is available only in Microsoft Defender for Office plan 2.