Anti-Phishing is an application component that protects your Exchange Online organization against phishing and malicious links.
Anti-Phishing scans messages using the database of phishing web addresses and the database of malicious web addresses.
While scanning messages for phishing and malicious links, the application analyzes not only links but also the message subject, contents, design features, and other message attributes. The scan also makes use of heuristic algorithms and Kaspersky Security Network (KSN) cloud services. With the help of KSN, the application receives the latest information about phishing and malicious links before they appear in the Kaspersky Lab databases.
You can enable or disable Anti-Phishing protection of your mailboxes.
Following the scan, Anti-Phishing assigns one of the following statuses to messages:
You can predefine actions to be taken by the application on messages with the Phishing status. The following operations are available:
You can also mark messages with detected malicious and phishing links with special tags in the message subject.
By default, Anti-Phishing protection is enabled.