Ensure the Common Attachment Types Filter is enabled (Only Checks Default Policy)

Why This Matters

Attackers frequently use common file types like executables, scripts, and compressed archives to deliver malware. Disabling the common attachment types filter leaves your users exposed to malicious attachments that could compromise the entire organization. Enabling this filter blocks high-risk attachment types at the gateway, reducing the initial attack surface.

What Aether365 Checks

This check verifies that the default anti-malware policy in Microsoft 365 has the Common Attachment Types Filter enabled. You can view this check in your Aether365 dashboard under the microsoft-365 security category.