Blocking executable content in Office 365
We had a DOT js file in a zip file come through email last week. We use o365 and I had created a transport rule:
* Apply this rule if… Any attachment has executable content
* Do the following… Delete the message without notifying anyone
But the DOT js still got through. I went digging to find out what Microsoft considered executable content and happened along this post:
In the post they list what is blocked with this rule
Dot js is not included 🙁
I’ve been working to see if I can create my own rule that will look inside a zip file to block extensions I don’t want coming through email. Once I get one created I’ll update this post with my findings.
If you know of a way to do this please leave it in the comments below.
More Stories
Quick PowerShell for the win
I'm always grabbing useful PowerShell commands or small scripts that I find useful. Here a couple from this week. I...
quick hit – Block personally owned devices in Intune with enrollment restrictions
https://twitter.com/SuneThomsenDK/status/1432759874014875651 Block personally owned devices in Intune with enrollment restrictions - OSDeploy | Sune Thomsen (osdsune.com)
Quick hit – Endpoint security and intune
endpoint and intune security features- tweet Endpoint & Security, The Curse of the Were-Applocker - Call4Cloud https://twitter.com/ooms_rudy/status/1432624423660621826
Blocking usb storage devices with intune
Moving from GPOs and SCCM to Intune and I've been searching for the best way to block usb storage devices...
Powershell reports for users with MFA setup in o365
Just a quick post about how to findout which users have setup MFA. Get-MsolUser -all | select DisplayName,UserPrincipalName,@{N="MFA Status"; E={...
Microsoft endpoint manager and windows updates
I'm working on getting our machines at work updated through Microsoft endpoint manager (intune) and reporting and slow updates have...