
Hmmmm??
Does Microsoft make a competing product? Maybe we could have a Teams meeting to discuss?
Microsoft's at-times-glitchy Defender service is again causing headaches for IT admins by flagging legitimate URLs as malicious. Users are complaining that sites like Zoom and Google are being tagged as potentially dangerous, triggering a flood of alerts. To add to the problem, one netizen wrote that the Defender portal is "up …
Because DZ534539 has already been moved over to the Issue History tab.
That's just low. Especially when the problem isn't fixed because links dating from the incident live period still aren't opening.
It looks as if DZ534548 is solely there to justify moving DZ534539 off of the Active tab.
"We determined that recent additions to the SafeLinks feature resulted in the false alerts and we subsequently reverted these additions to fix the issue"
aka Testing in Production. Microsoft loves it. Here's the thing though. The canary is not supposed to be the *only* safety feature in the mine. If you have a pile of dead canaries, the mine is *not* safe.
Defender seems to be no different from the other options. Periodically we have to re-white list our website in order to avoid triggering warnings.
I've forgotten which one as it hasn't happened for a few months but trust me if it were possible to have an undiluted rant at Microsoft I wouldn't miss the opportunity.
Working for a mailing ESP, we have this recurring issue every 3 months or so where some links are classed malicious when accessed via one domain alias but clean for another.
Microsoft's Postmaster says it's not their responsibility as it's not deliverability but security.
Microsoft's security team says that link scanning is not their purview.
Microsoft enterprise support says they can't help because it's a problem with a recipient on a Microsoft product and not the sender.
Microsoft enterprise support tells the recipient that the sender needs to contact them.
Microsoft public support says that "hum this shouldn't happen, but we can't help you".
Reaching out to Microsoft malware and security contacts who are co-members of M3AWG never answer...
So, globally if you have a link that gets blacklisted, you are screwed and hope that MS realises their mistake after a week or three.
Inside Redmond and India, the word 'support' was IMHO blacklisted a couple of decades ago and is now a prohibited word.
Just my $0.024 (Inflation you know) worth.
TBH, it is easier to get blood from a stone than a clear answer about an issue from MS. IMHO, nowt has changed since the day that W95 was released.