How to Prevent Email Impersonation from Microsoft 365 Exchange Admin Center

An email impersonation attack is an effective phishing tactic. This article helps you to learn how to recognize and prevent email impersonation attacks from Microsoft 365 Exchange Admin Center.

How to Prevent Email Impersonation from Microsoft 365 Exchange Admin Center

Email Impersonation is such a kind of practice for cybercriminals that allows them to pretend to be trusted individuals of your recipients and ask for sensitive information as well as perform tasks for the attacker's benefit. Impersonation might not involve technical manipulation of email properties but relies heavily on social engineering techniques. This is one type of Phishing attack.

We can easily create a Transport Rule from the Microsoft 365 Exchange Admin Center so that we can prevent such kinds of attacks.

We have to go to the Exchange Admin Center > Mail flow > Rules. Click Add a rule. Give the rule a relevant name, such as Stop Domain Name Spoofing. Under Apply this rule if select The sender, and then The sender is internal/external. Select the location outside the organization as shown in the subsequent screenshots.

If “M365 Client Demo” is the similar display name but email id is unknown, then the transport rule should be :

And that is the rule description :

SEE ALSO:

Microsoft Azure/Entra AD Connect - Express Setting

SEE ALSO:

Microsoft Azure/Entra AD Connect - Custom Setting

SEE ALSO:

Trendy