Impersonation protection checks SHOULD be used.

Why This Matters

Impersonation attacks allow adversaries to send emails that appear to come from trusted domains or users, increasing the likelihood of successful phishing. Without impersonation protection checks, your organization is vulnerable to targeted attacks that can lead to data breaches or financial loss. Enabling these checks helps ensure that suspicious emails posing as legitimate senders are flagged or blocked before reaching users.

What Aether365 Checks

This check verifies that impersonation protection policies are enabled in your Microsoft 365 environment. It appears in the Aether365 dashboard under the microsoft-365 security checks section.