Ensure notifications for internal users sending malware is Enabled (Only Checks Default Policy)

Why This Matters

Malware outbreaks often begin when an internal user unknowingly forwards malicious content to colleagues. Without notification alerts enabled for malware sent by internal users, security teams lose visibility into these incidents, allowing threats to spread undetected. Enabling these notifications helps your organization respond faster and limits the damage from internal malware propagation.

What Aether365 Checks

Aether365 verifies that the default anti-malware policy in Microsoft 365 has notifications enabled for malware sent by internal users. This check appears in the Aether365 dashboard under the microsoft-365 category.