The WVDE has implemented the first part of Microsoft’s Advanced Threat Protection solution. There are two pieces to this functionality and both have been implemented for all users:
•Safe Links – This will rewrite links to point back to Microsoft’s Exchange Protection servers and will determine if the link is malicious or safe. If the link is malicious, the user will be redirected to a deny page explaining that it was a malicious site. If it is not malicious, it will take the user to the intended destination of the original link. Below is a recent example of a phishing email and what the link looks like when you hover it.
•Safe Attachments – This system will scan all email attachments and detonate (simulate opening) the attachment in a virtual environment. Once it is determine if the attachment is safe or not it will either send the email with the attachments to the user or remove the attachment and indicate on the email that the attachment was removed.
These features will help protect users from failing victim to phishing emails we receive. Eventually, we should see a reduction in these emails as we prevent our users from falling victim to these same type of scams.
If you have any questions about these features, please contact Bob McCoy.
Coordinator, Office of Infrastructure & Network Operations
West Virginia Department of Education
1900 Kanawha Blvd East, Building 6, Room 346
Charleston, WV 25305-0330
Last Update: November 19, 2018