Microsoft Defender for Office 365: Microsoft Secure Score recommendation update for Spam confidence level

In this post, Microsoft Defender for Office 365 introduces a Microsoft Secure Score recommendation update for Spam confidence level (SCL). The recommendation will only trigger if a transport rule explicitly sets SCL to -1. The rollout is set to begin in early November 2024 and end by early December 2024. This update may potentially increase the Secure Score for some organizations, and no admin action is required before the rollout. Before this rollout, the recommendation by Microsoft Defender for Office 365, Microsoft Secure Score, triggers the recommendation to ensure Spam confidence level (SCL) is configured in mail transport rules with specific domains in organizations with transport rules that use condition on sender domains, even when not explicitly using SetSCL.Therefore, the intent of the recommendation is to only flag rules that bypass spam filtering by setting SCL to -1. After this update, this recommendation will only appear if the organization has a transport rule that specifically sets SCL to -1 and will not appear when using rules that do not set SCL (where SCL is null).

For some organizations, there may be a slight increase in the Secure Score as a result of this rollout since the recommendation may not be generated. However, the Secure Score for the organization should be automatically fixed. Admins can view this change or navigate to the path: Go to Defender → Exposure management → Secure Score → Recommended actions → Ensure Spam confidence level (SCL) is configured in mail transport rules with specific domains. Users may want to notify their admin and review the current configuration to determine the impact of this rollout on their organization, though no necessary action is required before the rollout.

The post Microsoft Defender for Office 365: Microsoft Secure Score recommendation update for Spam confidence level originally appeared on M365 Admin.