Versions Compared

Old Version 8

changes.mady.by.user Albert S Wang

Saved on

compared with

New Version Current

changes.mady.by.user Albert S Wang

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Spam and phishing emails are unfortunately a daily fact of life in our electronic age but fortunately MIT provides a key tool to block emails that continue to come from bad senders.  All MIT Exchange email users have access to Spam Quarantine to stop the spam mail before it gets into your Exchange email inbox.can configure their Exchange email in OWA to block emails from specific addresses or address patterns. 

Information about Spam Quarantine Emails at MIT can be found here:

http://ist.mit.edu.ezproxyberklee.flo.org/spam

IMPORTANT: Please be aware that MIT has changed the way Spam Quarantine is being handled FROM EXTERNAL SENDERS TO MIT. O365 (Office365), a cloud-based solution at Microsoft is now being used instead of Brightmail as of December 10th, 2018.
    

...

spam

...

   
 • Visit https://protection.office.com/
 • If you are not already logged in to MIT's Office 365, you will be prompted to sign in.
 • Enter your @mit.edu email address
 • Click "Next"
 • Click "Work or school account"
 • You will be taken to Touchstone@MIT to log in.
 • Your filtered messages are available under Threat Management -> Review -> Quarantine
Image Removed

Setting up white or black lists for incoming emails 

 
NOTE: There are 2 categories Spam and Bulk. The email notices you receive only tell you what's in Spam. Make sure you also look in Bulk for any legitimate emails that may have been stopped.
  
Image Removed
   For users who manage a white or black list (good and bad senders list), you will need to create those lists in OWA. Keep in mind this method only works for full email addresses.
 
• Visit
• Log into OWA (owa.mit.edu)
 • Gear icon (upper right corner of web page) -> Options -> See All Options...

Image Modified
 • Select “block or allow”

Image Modified

 • Make sure the Automatically filter junk email radio button is selected
 • White listed recipients can be added to “safe senders and recipients,” and denied senders added to “blocked senders.”
 • Mail sent to blocked senders should be automatically filtered to the user’s quarantine page at https://protection.office.com/ (see above for more information)
   

IMPORTANT: For the time being, Email WITHIN MIT is still being handled by Brightmail.

...

   

Setting up a filter for to block phishing attempts from email addresses with known address patterns

In order to stop phishing emails that have a pattern of ANYTHING.mit@gmail.com you can create a filter in OWA to block all addresses with the pattern mit@gmail.com

  • To do so, log in to OWA and go to Options.

    Image Added
  • In options, select "organize email" in the left nav.

    Image Added

 

  • In organize email, hit the "+" and select "Create a new rule for arriving messages..."

    Image Added

 

  • For the name, we call this filter "Gmail mit phishing block". For *When the message arrives, and" select "It includes these words in the sender's address..."

    Image Added

 

  • For the "specify words or phrases" type in the pattern mit@gmail.com. This will block all email addresses that have this pattern (for example impersonatedmitperson.mit@gmail.com).

    Image Added

 

  • Once you finish typing mit@gmail.com, VERY IMPORTANT, you must hit the "+" sign to add it. Once you do it will appear under the text box as text with a gray background.

    Image Added

 

  • Next, click "OK"

    Image Added

 

  • In the "Do the following:" select "Move the message to folder..."

    Image Added

 

  • Select a folder you want the phishing email to go to. In this case, we have selected "Junk (Exchange)". Click "ok" after you're done.

    Image Added

 

  • Next confirm all the information looks correct. If so, click on "save".

    Image Added

 

  • You should now see the rule listed in the inbox rules page. Please make sure the rule is checked. That's it! The rule is now live. You may log out of owa.

    Image Added

  • Be aware that once the bad guys get wise that you're blocking their emails, all they need to do is change the pattern. You obviously won't be able to block every email from gmail, but if they change the address pattern to impersonatedpersonmitedu@gmail you will need to either block the entire address or the new pattern whatever that may be.

 

 

Image Removed

In the left nav you will see a category for "Bad Senders" as well as "Good Senders".  Place any email address you would like blocked in the text box in "Bad Senders" and click “Add”.Image Removed
Conversely, sometimes legitimate emails get stuck in Spam Quarantine as well. If any of these emails are listed, you go to Good Senders and type the email address in the text box and click “Add”.  This way any emails from those addresses will always come through into your email Inbox.
And if you weren’t aware before, or forgot, Spam Quarantine sends you daily emails listing all the recent emails it has blocked. In the email you’ll see 2 columns with the sender email and subject. If you see an email that looks legit, log into Spam Quarantine and click the box next to the email.  Then click on the “Release” button to send it to your Exchange Inbox.