Introduction
Microsoft Office 365 Advanced Threat Protection (ATP) is an optional cloud-based service that guards customers against malware in attachments and links to nefarious websites by scanning and filtering email. Microsoft aims to lessen the effect of zero-day threats, which frequently arrive in the form of malicious URLs and attachments, via ATP. Before receivers click on links or open attachments in emails, ATP evaluates the email’s content. Administrators can apply distinct, independent policies to particular individuals, groups, or domains, and ATP will scan attachments and hyperlinks using those policies. Microsoft’s ATP cloud service operates without the need for any hardware or software.
Understanding Advanced Threat Protection
Real-Time Threat Detection
Safe Attachments
Safe Links
Enhanced Security Insights
Microsoft Office 365 Advanced Threat Protection assists with training
IT administrators can be informed by ATP’s comprehensive data about which users clicked on potentially harmful content, what kind of malicious content they received, and if any specific users receive an abnormally high volume of malicious email. This data aids in IT training users to increase their vigilance in order to prevent assaults.
Inspection may delay attachment delivery
Microsoft states that the type of attachment and its contents determine how long the safe attachments procedure takes to finish. Microsoft employs a “dynamic delivery” capability to allow recipients to view and reply to emails without delaying them. A placeholder is used to indicate that the attachment is being scanned. The attachment is returned to the email if ATP concludes that the file poses no threat. The attachment is deleted by ATP if it discovers a harmful file.