We had a DOT js file in a zip file come through email last week. We use o365 and I had created a transport rule:
* Apply this rule if… Any attachment has executable content
* Do the following… Delete the message without notifying anyone
But the DOT js still got through. I went digging to find out what Microsoft considered executable content and happened along this post:
http://blogs.msdn.com/b/tzink/archive/2014/04/08/blocking-executable-content-in-office-365-for-more-aggressive-anti-malware-protection.aspx
In the post they list what is blocked with this rule
Dot js is not included 🙁
I’ve been working to see if I can create my own rule that will look inside a zip file to block extensions I don’t want coming through email. Once I get one created I’ll update this post with my findings.
If you know of a way to do this please leave it in the comments below.
Like this:
Like Loading...
We use Microsoft Defender for endpoints on our physical workstations. I'm now looking at it for our servers. The servers...
If you want to sync standard common attributes from active directory to sharepoint. Its easy, AD sync to Azure AD...
Recently I've had to setup a few different app registration using Azure AD to access sharepoint sites. Once you get...
We have a few SQL servers that need to be upgraded before they go end of life. We are looking...
After a device is deployed likely using autopilot, sometime you have a need to add an AzureAD user to the...
We disabled WFB when we first rolled out autopilot because we are not ready to deploy and support passwordless at...
64655fbeecad6677fd9a3e2752adf5a3-335
