Table of Contents |
---|
2024-0712-24
Info |
---|
Rolling out throughout July 24th, 2024. |
11
Status | |
---|---|
|
...
|
...
|
...
Receiving sharing links from third parties has been the cause of many concerns due for phishing. We’ve added a new Caution Threat Category called External Sharing Link. This category will currently work against SharePoint and OneDrive shared objects but will expand to other third-party services in the future.
The protection will be enabled by default but will not contain any “Trusted” Microsoft tenants.
...
For Microsoft Tenants that you DO NOT wish to receive an External Sharing Link warning you can simply add their tenant’s name in the “Do not warn about the following trusted Microsoft tenant domains” multi-box and it will suppress the External Sharing Link threat category for that tenant.
The tenant’s name is the subdomain of the tenant address found within an M365 system that ends in .onmicrosoft.com
for example, polvocapital.onmicrosoft.com
- polvocapital
would be entered in the multi-box to suppress the External Sharing Link threat category for Polvo Capitals tenant.
The External Sharing Link threat category by itself is just a caution banner, however, if it’s coupled with additional categories, such as First-Time Sender, it’ll push towards being a dangerous message more quickly than previously. It’s also possible that the External Sharing Link threat category rises to a Danger threat level by itself if it’s coupled with raw suspicious text, such as Contract Bid, Quote Request, Secured Document
or other similar terms that are more frequently used in phishing attempts.
...
Team or Organization filter search
The Team search option within the Filters on the Dashboard has been updated to include an Organization search. This new search option allows you to search for a specific team or organization within the Dashboard. You can search using four different methods:
Team Name: Search for a specific team by name.
Organization Name: Search for a specific organization by name.
Team ID: Search for a specific team by ID. This is the unique identifier for the team which is the same as organization ID.
Domain Name: Search for a specific team by domain name.
...
Organizations are displayed in the search results with a building icon next to the name. This allows you to easily identify and filter by organization.
Status | ||||
---|---|---|---|---|
|
...
Reinstall Option on Tenant
...
Operations
Found at the bottom of https://app.inkyphishfence.com/settings/api-access for a given team you’ll find an option to enable or disable Delegated Access to Tenant Mail Content.
When Delegated Mail Content Access is enabled, parent and ancestor organization administrators will be authorized to access sensitive mail content within your tenant, such as the body of the mail. Note that this applies only to administrators who can remediate mail (Policy Admin, Super Admin).
To modify this section, you must be signed in as an administrator with mail content permissions on the team's tenant and have Directory and Remediation API Access granted.
This is not the MSP admin account but the end customers admin account.
...
On the Tenant Operations page Tenant Operations there is a new Reinstall option available. This option allows you to reinstall INKY for a specific tenant. To use this option, click the Reinstall button and confirm the action.
...
Note |
---|
This action will reinstall INKY for the selected tenant. All dashboard configuration will NOT BE modified. However, there may be a small window of time where messages are not processed by INKY. Only perform this action if you are sure you want to reinstall INKY for the tenant. If you have any questions reach out to INKY Support support@inky.com. |
...
Status | ||||
---|---|---|---|---|
|
...
When adding an action to an Outbound Mail Protection rule you can select the Cog Icon to customize the action setting. This action configuration now allows you to include read receipts when sending encrypted messages.
As an admin navigate to https://app.inkyphishfence.com/settings/outbound and configure your specific rule and when you add the encryption action you can select “Send Read Receipts”
...
When an end user opens an encrypted email by navigating through the login process the sender of the encrypted email will receive the below Email Encryption message view notification.
...
Workflow Expiration Reminder Notifications
INKY’s Outbound Workflow includes notifications for messages held for review. Approval expirations can be set to 1, 2, 3, 5, 7, 14, 30, or 60 days, depending on the rule. However, longer approval periods carry the risk that the original approver might not act in time. To address this, we’ve introduced Expiration Reminders.
You can configure Expiration Reminders through the cog settings icon under the “Edit Rule” options. Simply select “Add Reminder” to set up the desired notifications. You can schedule up to two reminders with different intervals. For example, in the screenshot below, the 2 days and 4 hours option ensure the approver is notified 2 days and 4 hours before the original message’s expiration.
...
Status | ||
---|---|---|
|
...
Adding a readable action summary to the Outbound Mail Protection rule editor gives admins more visibility on the exact actions that are selected.
...
Status | ||
---|---|---|
|
If your team utilizes Cybsafe on the https://app.inkyphishfence.com/settings/phishing-awareness-training we’ve updated the matching algorithm to ensure we identify their phishing training emails. No action is required if the Cybsafe provide is already selected.
Status | ||||
---|---|---|---|---|
|
...
Audit Log Updates
The Audit Logs has been updated to provide all accessible logs for the selected team or organization. INKY currently retains logs for the lifetime of the customer account (since June 2021). You can filter by the pre-selected timeframes or use the custom date range to view logs.
Find the audit logs at the bottom of this page: Admin Management - INKY
Status | ||
---|---|---|
|
The Allow and Block Lists have been updated to include a Comment field. This field allows you to add a comment to each entry in the list. Comments can be used to provide additional context or information about the entry. Comments cannot be changed once added, but you can delete and re-add the entry with a new comment if needed.
...