Block external forwarding in Exchange Online

External forwarding should always be disabled by default in any tenant, as it is commonly used by intruders to extract confidential emails from key individuals within the organization. Disabling this feature can help prevent unauthorized access to sensitive information and protect your business from potential security threats. One example of these malicious inbox rules could … Read more

Find External Email Forwarding rules in Microsoft365 Exchange Online

NOTE: This has been added as a GUI view in the new Modern Exchange Admin Center. https://admin.exchange.microsoft.com/#/reports/autoforwardedmessages I have encountered instances where mailbox rules were used to silently steal important data from users by forwarding their important emails to an external address. This is a common method of data theft, and it is important to … Read more