Anti-phishing policy exists and EnableUnauthenticatedSender is true.

Why This Matters

Attackers often spoof email addresses from domains that lack authentication records. By enabling the EnableUnauthenticatedSender flag in your anti-phishing policy, you ensure that messages from unauthenticated senders are clearly flagged, helping users identify and avoid potential phishing attempts. This reduces the risk of credential theft and malware delivery through deceptive emails.

What Aether365 Checks

Aether365 verifies that an anti-phishing policy exists in your Microsoft 365 tenant and that the EnableUnauthenticatedSender property is set to true. This check appears in the Aether365 dashboard under the microsoft-365 service section.