{"id":91766,"date":"2020-08-26T09:00:14","date_gmt":"2020-08-26T16:00:14","guid":{"rendered":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\/?p=91766"},"modified":"2023-05-15T23:03:01","modified_gmt":"2023-05-16T06:03:01","slug":"how-microsoft-threat-protection-risk-phishing","status":"publish","type":"post","link":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2020\/08\/26\/how-microsoft-threat-protection-risk-phishing\/","title":{"rendered":"How can Microsoft Threat Protection help reduce the risk from phishing?"},"content":{"rendered":"<h2>Microsoft Threat Protection can help you reduce the cost of phishing<\/h2>\n<p>The true cost of a successful phishing campaign may be higher than you think. Although phishing defenses and user education have become common in many organizations, employees still fall prey to these attacks. This is a problem because phishing is often leveraged as the first step in other cyberattack methods. As a result, its economic impact remains hidden. Understanding how these attacks work is key to mitigating your risk.<\/p>\n<p>One reason phishing is so insidious is that attackers continuously evolve their methods. In this blog, I\u2019ve described why you need to take phishing seriously and how different phishing methods work. You\u2019ll also find links to Microsoft Threat Protection solutions that can help you reduce your risk.<\/p>\n<h2>Nearly 1 in 3 attacks involve phishing<\/h2>\n<p>According to <a href=\"https:\/\/www.accenture.com\/us-en\/insights\/security\/cost-cybercrime-study\" target=\"_blank\" rel=\"noopener\">Accenture\u2019s Ninth Annual Cost of Cybercrime Study<\/a>, phishing attacks cost the average organization USD1.4 million in 2018, an eight percent rise over 2017. This likely underestimates the cost because the report only considers four major consequences when determining the cost of an attack: business disruption, information loss, revenue loss, and equipment damage. However, phishing is used as the delivery method for several other attacks, including business email compromise, malware, ransomware, and botnet attacks. The <a href=\"https:\/\/enterprise.verizon.com\/resources\/reports\/dbir\/\" target=\"_blank\" rel=\"noopener noreferrer\">2019 Verizon Data Breach Report<\/a> finds that almost one in three attacks involved phishing. And according to the <a href=\"https:\/\/www.ic3.gov\/media\/annualreport\/2019_IC3Report.pdf\" target=\"_blank\" rel=\"noopener noreferrer\">2019 Internet Crime Complaint Center,<\/a> phishing\/vishing\/smishing\/pharming are the most common methods for scamming individuals online.<\/p>\n<p>Since the costs of other attacks can often be attributed to phishing, a comprehensive cyber risk mitigation strategy should place a high value on phishing defenses and user education.<\/p>\n<h2>Phishing campaigns can be well-targeted and sophisticated<\/h2>\n<p>As attackers have developed new methods to evade detection by defenders and victims, phishing has transformed. Phishing now uses mediums other than email, including voicemail, instant messaging, and collaboration platforms, as people have enhanced email-based defenses, but may have not considered these other attack vectors. The success of phishing as the delivery of other cyberattacks makes it critically important for defenders to be able to identify the many types of phishing and how to defend against them, including:<\/p>\n<ul>\n<li><strong>Mass market phishing: <\/strong>When you think of phishing this is likely what comes to mind. These emails go out to a large group of people and use a generic message to trick users into clicking a link or downloading a file. Attacks often use email spoofing, so that the message appears to come from a legitimate source.<\/li>\n<li><strong>Spear phishing: <\/strong>Spear phishing is a more targeted social engineering method. Attackers pick an individual, such as a global administrator or an HR professional, conduct research, and then craft an email that makes use of that research to dupe the victim.<\/li>\n<li><strong>Whaling:<\/strong> These emails target someone on the executive team. Like spear phishing, these attacks start with research, which the attacker uses to write an email that appears legitimate.<\/li>\n<li><strong>Business-email compromise:<\/strong> In these attacks, adversaries compromise an executive\u2019s account, such as the CEO, and then use that account to ask a direct report to wire money.<\/li>\n<li><strong>Clone phishing: <\/strong>Attackers clone a legitimate email and then change the link or attachment.<\/li>\n<li><strong>Vishing: <\/strong>Vishing is a phishing attempt using the phone. Victims are asked to call back and enter a PIN number or account number.<\/li>\n<\/ul>\n<p>Fahmida Y. Rashid provides <a href=\"https:\/\/www.csoonline.com\/article\/3234716\/types-of-phishing-attacks-and-how-to-identify-them.html\" target=\"_blank\" rel=\"noopener noreferrer\">more details about these type of phishing attacks on CSO<\/a>.<\/p>\n<h2>An emerging phishing method exploits the increase in remote work<\/h2>\n<p>Recently, another phishing type was identified called <a href=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2020\/07\/08\/protecting-remote-workforce-application-attacks-consent-phishing\/\" target=\"_blank\" rel=\"noopener noreferrer\">consent phishing<\/a>. In response to COVID-19, people have increased their usage of cloud apps and mobile devices to facilitate work from home. Bad actors have taken advantage of this shift by leveraging application-based attacks to gain unwarranted access to valuable data in cloud services.\u00a0By using application prompts similar to that on mobile devices, they trick victims into allowing the malicious applications permission to access services and data (see Figure 2).<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-91767\" src=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\/wp-content\/uploads\/2020\/08\/Phish-1.png\" alt=\"An image showing the Microsoft &quot;Permissions requested&quot; dialogue. \" width=\"350\" height=\"568\" srcset=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2020\/08\/Phish-1.png 350w, https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2020\/08\/Phish-1-185x300.png 185w\" sizes=\"(max-width: 350px) 100vw, 350px\" \/><\/p>\n<p><em>Figure 1: Familiar application prompts trick users into giving malicious apps access to services and data.<\/em><\/p>\n<p>The following best practices can help you defend against this new threat:<\/p>\n<ul>\n<li>Educate your organization on how to identify a consent phishing message. Poor spelling and grammar are two indicators that the request isn\u2019t legitimate. Users may also notice that the URL doesn\u2019t quite look right.<\/li>\n<li>Promote and allow access to apps you trust. Use <a href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/active-directory\/develop\/publisher-verification-overview\" target=\"_blank\" rel=\"noopener noreferrer\">publisher verified<\/a> to identify apps that have been validated by the Microsoft platform. <a href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/active-directory\/manage-apps\/configure-user-consent\" target=\"_blank\" rel=\"noopener noreferrer\">Configure application consent policies<\/a>, so employees are guided to applications you trust.<\/li>\n<li>Educate your organization on how <a href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/active-directory\/develop\/v2-permissions-and-consent\" target=\"_blank\" rel=\"noopener noreferrer\">permissions and consent framework<\/a> works in the Microsoft platform.<\/li>\n<\/ul>\n<h2>Office 365 Advanced Threat Protection helps prevent and remediate phishing attacks<\/h2>\n<p>Office 365 Advanced Threat Protection (Office 365 ATP), natively protects all of Office 365 against advanced attacks. The service leverages industry-leading intelligence fueled by trillions of signals to continuously evolve to prevent emerging threats, like phishing and impersonation attacks. As part of Microsoft Threat Protection, Office 365 ATP provides security teams with the tools to investigate and remediate these threats, and integrates with other Microsoft Threat Protection products like Microsoft Defender Advanced Threat Protection and Azure Advanced Threat Protection to help stop cross-domain attacks spanning email, collaboration tools, endpoints, identities, and cloud apps.<\/p>\n<h2>Microsoft Threat Protection increases analyst efficiency<\/h2>\n<p>Microsoft Threat Protection stops attacks across Microsoft 365 services and auto-heals affected assets. It leverages the Microsoft 365 security portfolio to automatically analyze threat data across identities, endpoints, cloud applications, and email and docs. By fusing related alerts into incidents, defenders can respond to threats and attacks immediately and in their entirety, saving precious time. (see Figure 3).<\/p>\n<p>The following actions will help you gain greater visibility into attacks to protect your organization.<\/p>\n<ul>\n<li><a href=\"https:\/\/docs.microsoft.com\/en-us\/microsoft-365\/security\/office-365-security\/set-up-anti-phishing-policies\" target=\"_blank\" rel=\"noopener noreferrer\">Configure Anti-phishing policies in Microsoft 365<\/a>:<\/li>\n<li><a href=\"https:\/\/docs.microsoft.com\/en-us\/microsoft-365\/security\/office-365-security\/atp-for-spo-odb-and-teams\" target=\"_blank\" rel=\"noopener noreferrer\">Learn how Microsoft Office 365 ATP can defend your employees from more than email-based phishing attacks<\/a>.<\/li>\n<li>Use the <a href=\"https:\/\/docs.microsoft.com\/en-us\/microsoft-365\/security\/office-365-security\/attack-simulator\" target=\"_blank\" rel=\"noopener noreferrer\">Attack Simulator in Office 365 ATP to run attack scenarios and educate users about phishing attacks<\/a>.<\/li>\n<li><a href=\"https:\/\/docs.microsoft.com\/en-us\/cloud-app-security\/investigate-risky-oauth\" target=\"_blank\" rel=\"noopener noreferrer\">Investigate risky OAuth apps that may have been granted access to your Office 365 account<\/a>.<\/li>\n<li>Understand your organization&#8217;s threat posture by <a href=\"https:\/\/docs.microsoft.com\/en-us\/microsoft-365\/security\/office-365-security\/view-reports-for-atp\">viewing reports in Office 365 ATP<\/a>.<\/li>\n<\/ul>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-large wp-image-91768\" src=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\/wp-content\/uploads\/2020\/08\/Phish-2-1024x590.png\" alt=\"An image of : Microsoft Threat Protection and Office 365 ATP provide several capabilities to help you protect your organization from phishing attacks.\" width=\"1024\" height=\"590\" srcset=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2020\/08\/Phish-2-1024x590.png 1024w, https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2020\/08\/Phish-2-300x173.png 300w, https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2020\/08\/Phish-2-768x442.png 768w, https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2020\/08\/Phish-2-1536x885.png 1536w, https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2020\/08\/Phish-2.png 1592w\" sizes=\"(max-width: 1024px) 100vw, 1024px\" \/><\/p>\n<p><em>Figure 2: Microsoft Threat Protection and Office 365 ATP provide several capabilities to help you protect your organization from phishing attacks.<\/em><\/p>\n<p>To learn more about Microsoft Security solutions visit our <a href=\"https:\/\/www.microsoft.com\/en-us\/security\/business\/solutions\" target=\"_blank\" rel=\"noopener noreferrer\">website.<\/a>\u00a0 Bookmark the\u00a0<a href=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\" target=\"_blank\" rel=\"noopener noreferrer\">Security blog<\/a>\u00a0to keep up with our expert coverage on security matters. Also, follow us at\u00a0<a href=\"https:\/\/twitter.com\/@MSFTSecurity\" target=\"_blank\" rel=\"noopener noreferrer\">@MSFTSecurity<\/a>\u00a0for the latest news and updates on cybersecurity.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>The true costs from phishing may be higher than you think. Microsoft Threat Protection can help you mitigate your risk.<\/p>\n","protected":false},"author":96,"featured_media":91770,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"ep_exclude_from_search":false,"_classifai_error":"","footnotes":""},"content-type":[3662],"topic":[3681],"products":[],"threat-intelligence":[],"tags":[3822,3795],"coauthors":[2296],"class_list":["post-91766","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","content-type-news","topic-risk-management","tag-microsoft-security-insights","tag-phishing"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v23.4 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>How can Microsoft Threat Protection help reduce the risk from phishing? | Microsoft Security Blog<\/title>\n<meta name=\"description\" content=\"The true costs from phishing may be higher than you think. Microsoft Threat Protection can help you mitigate your risk.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2020\/08\/26\/how-microsoft-threat-protection-risk-phishing\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"How can Microsoft Threat Protection help reduce the risk from phishing? | Microsoft Security Blog\" \/>\n<meta property=\"og:description\" content=\"The true costs from phishing may be higher than you think. Microsoft Threat Protection can help you mitigate your risk.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2020\/08\/26\/how-microsoft-threat-protection-risk-phishing\/\" \/>\n<meta property=\"og:site_name\" content=\"Microsoft Security Blog\" \/>\n<meta property=\"article:published_time\" content=\"2020-08-26T16:00:14+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2023-05-16T06:03:01+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2020\/08\/M365CO19_SMB_HPEliteBook_063-BANNER.png\" \/>\n\t<meta property=\"og:image:width\" content=\"1200\" \/>\n\t<meta property=\"og:image:height\" content=\"630\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"James Ringold\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:image\" content=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2020\/08\/M365CO19_SMB_HPEliteBook_063-BANNER.png\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"James Ringold\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2020\/08\/26\/how-microsoft-threat-protection-risk-phishing\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2020\/08\/26\/how-microsoft-threat-protection-risk-phishing\/\"},\"author\":[{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/author\/james-ringold\/\",\"@type\":\"Person\",\"@name\":\"James Ringold\"}],\"headline\":\"How can Microsoft Threat Protection help reduce the risk from phishing?\",\"datePublished\":\"2020-08-26T16:00:14+00:00\",\"dateModified\":\"2023-05-16T06:03:01+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2020\/08\/26\/how-microsoft-threat-protection-risk-phishing\/\"},\"wordCount\":1065,\"publisher\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2020\/08\/26\/how-microsoft-threat-protection-risk-phishing\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2020\/08\/M365CO19_SMB_HPEliteBook_063-FEATURE.png\",\"keywords\":[\"Microsoft Security Insights\",\"Phishing\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2020\/08\/26\/how-microsoft-threat-protection-risk-phishing\/\",\"url\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2020\/08\/26\/how-microsoft-threat-protection-risk-phishing\/\",\"name\":\"How can Microsoft Threat Protection help reduce the risk from phishing? | Microsoft Security Blog\",\"isPartOf\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2020\/08\/26\/how-microsoft-threat-protection-risk-phishing\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2020\/08\/26\/how-microsoft-threat-protection-risk-phishing\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2020\/08\/M365CO19_SMB_HPEliteBook_063-FEATURE.png\",\"datePublished\":\"2020-08-26T16:00:14+00:00\",\"dateModified\":\"2023-05-16T06:03:01+00:00\",\"description\":\"The true costs from phishing may be higher than you think. Microsoft Threat Protection can help you mitigate your risk.\",\"breadcrumb\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2020\/08\/26\/how-microsoft-threat-protection-risk-phishing\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2020\/08\/26\/how-microsoft-threat-protection-risk-phishing\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2020\/08\/26\/how-microsoft-threat-protection-risk-phishing\/#primaryimage\",\"url\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2020\/08\/M365CO19_SMB_HPEliteBook_063-FEATURE.png\",\"contentUrl\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2020\/08\/M365CO19_SMB_HPEliteBook_063-FEATURE.png\",\"width\":500,\"height\":263,\"caption\":\"An image of a female tech worker sitting at a table working on her laptop.\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2020\/08\/26\/how-microsoft-threat-protection-risk-phishing\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"How can Microsoft Threat Protection help reduce the risk from phishing?\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#website\",\"url\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\",\"name\":\"Microsoft Security Blog\",\"description\":\"Expert coverage of cybersecurity topics\",\"publisher\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#organization\",\"name\":\"Microsoft Security Blog\",\"url\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2018\/08\/cropped-cropped-microsoft_logo_element.png\",\"contentUrl\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2018\/08\/cropped-cropped-microsoft_logo_element.png\",\"width\":512,\"height\":512,\"caption\":\"Microsoft Security Blog\"},\"image\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#\/schema\/logo\/image\/\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"How can Microsoft Threat Protection help reduce the risk from phishing? | Microsoft Security Blog","description":"The true costs from phishing may be higher than you think. Microsoft Threat Protection can help you mitigate your risk.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2020\/08\/26\/how-microsoft-threat-protection-risk-phishing\/","og_locale":"en_US","og_type":"article","og_title":"How can Microsoft Threat Protection help reduce the risk from phishing? | Microsoft Security Blog","og_description":"The true costs from phishing may be higher than you think. Microsoft Threat Protection can help you mitigate your risk.","og_url":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2020\/08\/26\/how-microsoft-threat-protection-risk-phishing\/","og_site_name":"Microsoft Security Blog","article_published_time":"2020-08-26T16:00:14+00:00","article_modified_time":"2023-05-16T06:03:01+00:00","og_image":[{"width":1200,"height":630,"url":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2020\/08\/M365CO19_SMB_HPEliteBook_063-BANNER.png","type":"image\/png"}],"author":"James Ringold","twitter_card":"summary_large_image","twitter_image":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2020\/08\/M365CO19_SMB_HPEliteBook_063-BANNER.png","twitter_misc":{"Written by":"James Ringold","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2020\/08\/26\/how-microsoft-threat-protection-risk-phishing\/#article","isPartOf":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2020\/08\/26\/how-microsoft-threat-protection-risk-phishing\/"},"author":[{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/author\/james-ringold\/","@type":"Person","@name":"James Ringold"}],"headline":"How can Microsoft Threat Protection help reduce the risk from phishing?","datePublished":"2020-08-26T16:00:14+00:00","dateModified":"2023-05-16T06:03:01+00:00","mainEntityOfPage":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2020\/08\/26\/how-microsoft-threat-protection-risk-phishing\/"},"wordCount":1065,"publisher":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#organization"},"image":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2020\/08\/26\/how-microsoft-threat-protection-risk-phishing\/#primaryimage"},"thumbnailUrl":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2020\/08\/M365CO19_SMB_HPEliteBook_063-FEATURE.png","keywords":["Microsoft Security Insights","Phishing"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2020\/08\/26\/how-microsoft-threat-protection-risk-phishing\/","url":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2020\/08\/26\/how-microsoft-threat-protection-risk-phishing\/","name":"How can Microsoft Threat Protection help reduce the risk from phishing? | Microsoft Security Blog","isPartOf":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2020\/08\/26\/how-microsoft-threat-protection-risk-phishing\/#primaryimage"},"image":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2020\/08\/26\/how-microsoft-threat-protection-risk-phishing\/#primaryimage"},"thumbnailUrl":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2020\/08\/M365CO19_SMB_HPEliteBook_063-FEATURE.png","datePublished":"2020-08-26T16:00:14+00:00","dateModified":"2023-05-16T06:03:01+00:00","description":"The true costs from phishing may be higher than you think. Microsoft Threat Protection can help you mitigate your risk.","breadcrumb":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2020\/08\/26\/how-microsoft-threat-protection-risk-phishing\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.microsoft.com\/en-us\/security\/blog\/2020\/08\/26\/how-microsoft-threat-protection-risk-phishing\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2020\/08\/26\/how-microsoft-threat-protection-risk-phishing\/#primaryimage","url":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2020\/08\/M365CO19_SMB_HPEliteBook_063-FEATURE.png","contentUrl":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2020\/08\/M365CO19_SMB_HPEliteBook_063-FEATURE.png","width":500,"height":263,"caption":"An image of a female tech worker sitting at a table working on her laptop."},{"@type":"BreadcrumbList","@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2020\/08\/26\/how-microsoft-threat-protection-risk-phishing\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/"},{"@type":"ListItem","position":2,"name":"How can Microsoft Threat Protection help reduce the risk from phishing?"}]},{"@type":"WebSite","@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#website","url":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/","name":"Microsoft Security Blog","description":"Expert coverage of cybersecurity topics","publisher":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#organization","name":"Microsoft Security Blog","url":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2018\/08\/cropped-cropped-microsoft_logo_element.png","contentUrl":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2018\/08\/cropped-cropped-microsoft_logo_element.png","width":512,"height":512,"caption":"Microsoft Security Blog"},"image":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#\/schema\/logo\/image\/"}}]}},"msxcm_display_generated_audio":false,"distributor_meta":false,"distributor_terms":false,"distributor_media":false,"distributor_original_site_name":"Microsoft Security Blog","distributor_original_site_url":"https:\/\/www.microsoft.com\/en-us\/security\/blog","push-errors":false,"_links":{"self":[{"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/posts\/91766"}],"collection":[{"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/users\/96"}],"replies":[{"embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/comments?post=91766"}],"version-history":[{"count":0,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/posts\/91766\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/media\/91770"}],"wp:attachment":[{"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/media?parent=91766"}],"wp:term":[{"taxonomy":"content-type","embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/content-type?post=91766"},{"taxonomy":"topic","embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/topic?post=91766"},{"taxonomy":"products","embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/products?post=91766"},{"taxonomy":"threat-intelligence","embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/threat-intelligence?post=91766"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/tags?post=91766"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/coauthors?post=91766"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}