Your own domains are not being allow listed in an unsafe manner in Transport Rules.

Why This Matters

Allowing your own domains in transport rules can bypass critical security filters like anti-spam and anti-phishing protections. This creates a significant risk because attackers often impersonate internal domains to launch phishing attacks. If your own domains are allow listed unsafely, malicious emails may reach users without being scanned.

What Aether365 Checks

This check verifies that no transport rules in Microsoft 365 are set to allow your own domains in a way that bypasses security filtering. It appears in your Aether365 dashboard under the microsoft-365 checks section.