Microsoft will alert Office 365 admins of Forms phishing attempts
Microsoft Forms is an app that allows web and smartphone users to create surveys, polls, and quizzes for collecting feedback and data online.
Recently it has only been made available to enterprise customers of Microsoft 365 Personal and Microsoft 365 Family subscriptions, for their personal use, and those with a Microsoft account.
Activity alerts for Forms phishing
Phishing attempts are detected by Microsoft Form by means of proactive phishing detection (available for all public forms since July 2019 and for enterprise forms from September 2019).
With this phishing protection feature, malicious password collection is proactively identified in forms and surveys.
Admins are alerted to potential phishing by all users or forms blocked in their tenants. Microsoft is currently working to add these alerts to SCC Alert Center for phishing activity.
“We are now adding Microsoft Forms’ phishing activities alert (for blocked forms and users due to confirmed and suspicious phishing) to the default alert policies in Microsoft’s Security and Compliance Center (SCC),” In a Microsoft 365 Roadmap entry, the company explained.
“If there is any user restricted from sharing forms and collecting responses from Microsoft Forms because of confirmed phishing activities, or any form identified/detected as phishing form, IT admins will receive an alert in the SCC Alert center.”
Later this month it will Roll Out
At the end of this month, Microsoft plans to make this new feature widely accessible worldwide.
If the notifications are introduced to the messaging center, administrators can unblock users if they feel that they have no malicious purpose.
“If you believe a form has malicious intent, no further action from you is required. The form will stay blocked until its owner removes the content flagged for the malicious collection of sensitive data,” Microsoft explains.