Seini explains that the built-in protection is designed to fill gaps in coverage. She argues that Microsoft Defender for Office 365 has multiple protections that, if not enabled, can expose your organization to malicious attacks such as phishing messages Default security. According to Saini, built-in protection policies are designed to maximize standard protection with minimal risk of impact. In light of this goal, the new policy disables URL wrapping for safe links. However, Teams Safe Links protection is enabled to protect users from phishing emails.
Microsoft is rolling out a new security policy that automatically enables a curated set of recommended settings and policies to ensure that all Office 365 users receive at least a basic level of protection. This preset, called Built-In Protection, joins the Standard and Strict presets. However, unlike his two existing presets, the new preset is enabled by default for all new and existing users and does not require any administrative action. His Sundeep Saini, senior program manager for Defender for Office 365, said:
It’s also important to note that the new policy has the lowest priority. That is, it does not affect users who already fall under default or strict presets, or custom policies. Despite that benefit, Microsoft will eventually roll out options for users to configure exceptions to the introduction of the new default policy in the Microsoft 365 Defender portal. The company has already begun rolling out built-in protection presets to users around the world and hopes to complete the process by the end of the year.