Microsoft 365 Alert – Service Degradation – Exchange Online – Users’ legitimate inbound email messages containing specific URLs are being incorrectly marked as phish – ONGOING
30/10/2024 15:06:00 PM
NHSmail Reference: INC46588636
Microsoft Reference: EX921449
Issue Status: ONGOING
Issue Description: Users’ legitimate inbound email messages containing specific URLs are being incorrectly marked as phish.
Current Update: 31/10/2024 09:22:00 AM – Microsoft’s script to remove the previously affected messages from quarantine is ongoing though progressing more slowly than originally anticipated. They now expect that the majority of the affected messages will be removed from quarantine by their next scheduled update.
Scope of impact: Impact is specific to some users who are expecting to receive inbound email messages who are served through the affected infrastructure.
Root cause: Their automated anti-spam procedures is incorrectly blocking email messages that contain a specific URL, which is causing inbound email messages to be marked as phishing and quarantined due to a signature which is flagged as malicious.
Next update by: Thursday, October 31, 2024, at 6:30 PM UTC