TPAT, being such a large organisation, often receives emails from unscrupulous actors seeking to do harm, or to exploit naivety for financial gain. This guide is to show how to block addresses or domains to prevent our colleagues from receiving an assortment of threats, ranging from phishing emails, malware, or social engineering attempts.
- Navigate to https://security.microsoft.com/.
- On the left-hand menu, click on "Policies & rules".
- Click on "Threat policies".
- Click on "Tenant Allow/Block Lists".
- Press the "Block" button, indicated by a large plus sign.
- Enter the domains or addresses. For domains, the asterisk wildcard is not required.
- Choose how long the block entry should remain in place for. It is recommended to set the entry to "Never expire".
- In the "Optional note" section, it is good practice to put the reason for blocking, as well as the ticket number (if applicable).
- Optional note example: "Suspected trojan, caught by antivirus | Ticket #12345".
- Click add at the bottom.
Please watch the attached video for a visual guide.
Was this article helpful?
That’s Great!
Thank you for your feedback
Sorry! We couldn't be helpful
Thank you for your feedback
Feedback sent
We appreciate your effort and will try to fix the article