Safe lists SHOULD NOT be enabled.

Why This Matters

Enabling safe lists in Microsoft 365 can inadvertently allow malicious senders to bypass anti-spam and anti-phishing protections. Threat actors often exploit trusted sender lists to deliver phishing emails or malware directly to user inboxes. Disabling safe lists ensures all inbound messages are uniformly scanned, reducing the risk of successful email-based attacks.

What Aether365 Checks

This check verifies that safe lists are not enabled in your Microsoft 365 environment. It appears in the Aether365 dashboard under the microsoft-365 checks category, flagging any tenant where safe lists remain active.

How to Fix

To disable safe lists in Microsoft 365: