{"id":717,"date":"2023-03-16T09:01:36","date_gmt":"2023-03-16T00:01:36","guid":{"rendered":"https:\/\/m365jp.xyz\/?p=717"},"modified":"2023-03-16T09:20:17","modified_gmt":"2023-03-16T00:20:17","slug":"mc528356-microsoft-defender-for-office-365-filter-update-for-quarantine-portal","status":"publish","type":"post","link":"https:\/\/m365jp.net\/index.php\/2023-03-16-mc528356-microsoft-defender-for-office-365-filter-update-for-quarantine-portal","title":{"rendered":"MC528356 | Microsoft Defender for Office 365: Filter Update for Quarantine Portal"},"content":{"rendered":"
\n
\n
\n\n\n\n
MC528356 | Microsoft Defender for Office 365: Filter Update for Quarantine Portal<\/th>\n<\/tr>\n<\/tbody>\n<\/table>\n
\n\n\n\n\n\n\n\n\n
Classification<\/th>\nstayInformed<\/td>\n<\/tr>\n
Last Updated<\/th>\n03\/15\/2023 23:36:20<\/td>\n<\/tr>\n
Start Time<\/th>\n03\/15\/2023 23:36:15<\/td>\n<\/tr>\n
End Time<\/th>\n07\/31\/2023 07:00:00<\/td>\n<\/tr>\n
Message Content<\/th>\n\n

In the Microsoft 365 Defender portal, the Admin \/ SecOps can review quarantined messages on the Email & Collaboration > Review > Quarantine<\/i> page<\/a>. On this quarantine page, all the quarantined email messages are listed. These messages can be quarantined if the messages are classified as malicious or spam or other admin actions. Admins\/ SecOps can view messages which are quarantined due to a specific policy anti-malware, Safe Attachments, anti-spam, etc.) with a specific reason for quarantining. These reasons are Phish, Malware, Spam etc.<\/p>\n

This message is associated with Microsoft 365 Roadmap ID 117520<\/a><\/p>\n

[When this will happen:]<\/p>\n

Standard Release: We will begin rollout in early April and expect to complete rollout by late May.<\/p>\n

GCC, GCC-H, DoD: We will begin rollout in mid-May and expect to complete rollout by late June.<\/p>\n

[How this will affect your organization:]<\/p>\n

In the anti-malware policy, along with quarantining messages with attachments that are malicious (malware or phish), the common attachment filter settings can be configured to quarantine messages which contain attachments with specific file extensions. All of these email messages with specific file extensions are shown as Malware for the filter Quarantine reason. As a result, it\u2019s not easy to identify messages that were quarantined due to attachments being malicious or simply matching the file type.<\/p>\n

With this change, we\u2019re adding a new filter known as Admin Action C File type block to the Quarantine reason filter. Applying this filter will show the email messages that were quarantined by the common attachment filter. This change will be visible on the Quarantine page<\/a> and also in the respective Get-QuarantineMessage cmdlet<\/code><\/code> (parameter QuarantineTypes<\/code><\/code> to include AdminActionFileTypeBlock<\/code><\/code>).<\/p>\n

<\/p>\n

With the addition of this filter, it should make it easy for the Admin \/ SecOps to filter and review the messages which are blocked purely due to file type block.<\/p>\n

[What you need to do to prepare:]<\/p>\n

There is no action required on your end at this time. For more information, please visit this documentation<\/a>.<\/p>\n<\/td>\n<\/tr>\n

Machine Translation<\/th>\n\n

Microsoft 365 Defender \u30dd`\u30bf\u30eb\u3067\u306f\u3001\u7ba1\u7406\u8005\/SecOps \u306f [ \u5b50\u30e1`\u30eb\u3068\u30b3\u30e9\u30dc\u30ec`\u30b7\u30e7\u30f3] > [\u5ba4<\/i>\u306e_J] \u30da`\u30b8\u3067<\/a>\u5ba4g\u307f\u30e1\u30c3\u30bb`\u30b8\u3092_J\u3067\u304d\u307e\u3059>\u3002\u3053\u306e\u5ba4\u64ba\u8bb4`\u30b8\u306b\u306f\u3001\u5ba4\u6499\u4e39\u6b37\u90e1\u5de5\u4f3d\u76ae\u575e\u5b50\u30e1`\u30eb \u30e1\u30c3\u30bb`\u30b8\u304c\u4e00E\u8868\u793a\u3055\u308c\u307e\u3059\u3002\u3053\u308c\u3089\u306e\u30e1\u30c3\u30bb`\u30b8\u306f\u3001\u30e1\u30c3\u30bb`\u30b8\u304c\u610f\u306e\u3042\u308b\u30e1\u30c3\u30bb`\u30b8\u3001\u30b9\u30d1\u30e0\u3001\u307e\u305f\u306f\u305d\u306e\u4ed6\u306e\u7ba1\u7406\u8005\u30a2\u30af\u30b7\u30e7\u30f3\u3068\u3057\u3066\u5206\u3055\u308c\u3066\u3044\u308b\u9f8a\u6089\u5ba4\u6499\u6266\u84fc\u57c2\uff19\u82be\u789a\/ SecOps\u306f\u3001\u7279\u5b9a\u306e\u30dd\u30ea\u30b7`\u30de\u30eb\u30a6\u30a7\u30a2\u7b56\u3001\u5b89\u5168\u306a\u6dfb\u4ed8\u30d5\u30a1\u30a4\u30eb\u3001\u30b9\u30d1\u30e0\u7b56\u306a\u3069\u306e\u305f\u3081\u306b\u9694x\u3055\u308c\u305f\u30e1\u30c3\u30bb`\u30b8\u3092\u8868\u793a\u3067\u304d\u307e\u3059\u3002\u5ba4\u6499\u7fc1\u56df\u00e0\u536b\u789b\u55d3\u8f98\u84fc\u57c2\uffe5\u957f\u6b37\u6901\u536b\u789b\u55d3\u7a00\u69a8\uff05\u6c13\u4f10\u8797\u554a\u8559\u6bf3\u0395\u0414\u653b\u9774\u5576\u80dc\u55d3\u6266\u57c2<\/p>\n

\u3053\u306e\u30e1\u30c3\u30bb`\u30b8\u306f\u3001Microsoft 365 \u30ed`\u30c9\u30de\u30c3\u30d7 ID 117520<\/a> \u306bvB\u4ed8\u3051\u3089\u308c\u3066\u3044\u307e\u3059\u3002<\/p>\n

[\u3053\u308c\u304c\u8d77\u3053\u308b\u3068\u304d:]<\/p>\n

\u5723\u8f9a\u621b`\u30b9: \u30ed`\u30eb\u30a2\u30a6\u30c8\u306f 4 \u6708\u4e0a\u65ec\u306b_\u59cb\u3055\u308c\u30015 \u6708\u4e0b\u65ec\u307e\u3067\u306b\u5b8c\u4e86\u3059\u308b\u4e88\u5b9a\u3067\u3059\u3002<\/p>\n

GCC\u3001GCC-H\u3001DoD: \u30ed`\u30eb\u30a2\u30a6\u30c8\u306f 5 \u6708\u4e2d\u65ec\u306b_\u59cb\u3055\u308c\u30016 \u6708\u4e0b\u65ec\u307e\u3067\u306b\u30ed`\u30eb\u30a2\u30a6\u30c8\u3092\u5b8c\u4e86\u3059\u308b\u4e88\u5b9a\u3067\u3059\u3002<\/p>\n

[\u3053\u308c\u304cM\u306b\u4e0e\u3048\u308b\u5f71:]<\/p>\n

\u30de\u30eb\u30a6\u30a7\u30a2\u7b56\u30dd\u30ea\u30b7`\u3067\u306f\u3001\u610f\u306e\u3042\u308b (\u30de\u30eb\u30a6\u30a7\u30a2\u307e\u305f\u306f\u30d5\u30a3\u30c3\u30b7\u30f3\u30b0) \u304c\u6dfb\u4ed8\u3055\u308c\u305f\u30e1\u30c3\u30bb`\u30b8\u3092\u5ba4\u6499\u5de5\u6bea\u8da3\u8da3\u7321\u6055\u247b\u56df\u00e0\u8fdd\u69a8\u02c9\u3045\u5b50\u3092\u6301\u3064\u6dfb\u4ed8\u30d5\u30a1\u30a4\u30eb\u3092\u542b\u3080\u30e1\u30c3\u30bb`\u30b8\u3092\u5ba4\u6499\u5de5\u6bea\u745c\u0394\u6055\u2490\u9910\u00e0\u7fc1\u7800\u9876\u69a8\u02c9\u3045 \u30d5\u30a3\u30eb\u30bf`O\u5b9a\u3092\u6210\u3067\u304d\u307e\u3059\u3002\u7279\u5b9a\u306e\u30d5\u30a1\u30a4\u30eb\u5b50\u3092\u6301\u3064\u3053\u308c\u3089\u306e\u5b50\u30e1`\u30eb \u30e1\u30c3\u30bb`\u30b8\u306f\u3059\u3079\u3066\u3001\u30d5\u30a3\u30eb\u30bf`\u5ba4\u6499\u536b\u789b\u55d3\u948e\u8559\u6bf3\u0395\u0414\u8da3\u7b4f\u7968\u784e\u5162\u4e39\u6b37\u84fc\u57c2\uffe5\u996f\u8c13Y\u679c\u3001\u6dfb\u4ed8\u30d5\u30a1\u30a4\u30eb\u304c\u610f\u306e\u3042\u308b\u3082\u306e\u3067\u3042\u3063\u305f\u308a\u3001g\u306b\u30d5\u30a1\u30a4\u30eb\u306eN\u3068\u4e00\u81f4\u3057\u305f\u308a\u3059\u308b\u305f\u3081\u306b\u5ba4\u6499\u4e39\u6b37\u9a8f\u5e5e\u6c13\u54d7`\u30b8\u3092\u7279\u5b9a\u3059\u308b\u306e\u306fg\u3067\u306f\u3042\u308a\u307e\u305b\u3093\u3002<\/p>\n

\u3053\u306e\u6d93\u6454\u745c\u8f8d[\u7ba1\u7406\u30a2\u30af\u30b7\u30e7\u30f3 – \u30d5\u30a1\u30a4\u30eb\u306eN] \u30d6\u30ed\u30c3\u30af\u3068\u547c\u3070\u308c\u308b\u65b0\u3057\u3044\u30d5\u30a3\u30eb\u30bf`\u304c [\u5ba4\u5443\u789b] \u30d5\u30a3\u30eb\u30bf`\u306b\u8ffd\u52a0\u3055\u308c\u307e\u3059\u3002\u3053\u306e\u30d5\u30a3\u30eb\u30bf`\u3092m\u7528\u3059\u308b\u3068\u3001\u5171\u901a\u306e\u6dfb\u4ed8\u30d5\u30a1\u30a4\u30eb \u30d5\u30a3\u30eb\u30bf`\u306b\u3088\u3063\u3066\u5ba4\u6499\u4e39\u6b37\u4fa9\u5b50\u30e1`\u30eb \u30e1\u30c3\u30bb`\u30b8\u304c\u8868\u793a\u3055\u308c\u307e\u3059\u3002\u3053\u306e\u6d93\u7a00[\u5ba4] \u30da`\u30b8<\/a>\u3068\u305d\u308c\u305e\u308c Get-QuarantineMessage cmdlet<\/code><\/code> (\u542b\u3081AdminActionFileTypeBlock<\/code><\/code>\u308b\u30d1\u30e9\u30e1`\u30bf`QuarantineTypes<\/code><\/code>) \u306b\u3082\u8868\u793a\u3055\u308c\u307e\u3059\u3002<\/p>\n

<\/p>\n

\u3053\u306e\u30d5\u30a3\u30eb\u30bf`\u306e\u8ffd\u52a0\u306b\u3088\u308a\u3001\u7ba1\u7406\u8005\/ SecOps\u306f\u3001\u306b\u30d5\u30a1\u30a4\u30eb\u30bf\u30a4\u30d7\u30d6\u30ed\u30c3\u30af\u306e\u305f\u3081\u306b\u30d6\u30ed\u30c3\u30af\u3055\u308c\u3066\u3044\u308b\u30e1\u30c3\u30bb`\u30b8\u3092\u30d5\u30a3\u30eb\u30bf\u30ea\u30f3\u30b0\u3057\u3066_J\u3059\u308b\u3053\u3068\u304c\u5bb9\u6613\u306b\u306a\u308a\u307e\u3059\u3002<\/p>\n

[\u6d43\u5de5\u6bea\u90e1\u5e5b\u542e\u533e\u80dc\u957f:]<\/p>\n

Fr\u70b9\u3067\u306f\u3001\u30e6`\u30b6`\u8da3\u6f5c\u533e\u5723\u4f10\u7ec1\u87ad\u6089\u8f98\u84fc\u62a4\u87c6\uff34\u306b\u3064\u3044\u3066\u306f\u3001 \u3053\u306e\u30c9\u30ad\u30e5\u30e1\u30f3\u30c8\u3092\u53c2\u7167\u3057\u3066\u304f\u3060\u3055\u3044<\/a>\u3002<\/p>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table><\/div>\n<\/div>\n","protected":false},"excerpt":{"rendered":"

MC528356 | Microsoft Defender for Office 365: Filter Update for Quarantine Portal Classification stayInformed […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-717","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"_links":{"self":[{"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/posts\/717","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/comments?post=717"}],"version-history":[{"count":0,"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/posts\/717\/revisions"}],"wp:attachment":[{"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/media?parent=717"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/categories?post=717"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/tags?post=717"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}