Protecting against compromised internal accounts or devices
A comprehensive security program must address threats from external and internal sources. The potential harm caused by internal threats, whether from compromised accounts or malicious insiders, is equally significant. The focus of the advanced protection for internal mail is to address the need for protection from this perspective.
How advanced protection for internal mail works
Within Microsoft Defender for Office 365, advanced protection is used to safeguard internal mail by scanning for suspicious activity originating from and directed within the organization. This component utilizes the previously mentioned features: Safe Attachments, Safe Links, anti-phishing, and the Report Message add-in. It also incorporates Defender for Office 365 threat analytics and reporting, as well as automated investigation. These functionalities help analyze attachments, links, and message content to identify any potentially malicious...
