Ensure that SPF records are published for all Exchange Domains
Why This Matters
Without a properly published SPF record for each domain you use with Exchange, attackers can spoof your domain to send phishing or spam emails that appear legitimate. Email systems receiving messages from your domain rely on SPF to verify the message originated from an authorized server. Failing to publish SPF records undermines email authentication and increases the risk of your domain being used in impersonation attacks.
What Aether365 Checks
Aether365 verifies that every domain configured in Exchange Online has a corresponding SPF record published in DNS. This check appears in the Aether365 dashboard under microsoft-365 checks.
How to Fix
To remediate, follow these steps: