Skip to main content

After the phishing email is delivered, when a user clicks on a click in the email, MS Defender stops the link from going to WebRoot landing page. The page is blocked stating:

 

This website has been classified as malicious.

Opening this website might not be safe.

https://na01.safelinks.protection...

 you don't open this website, as opening it might not be safe and could harm your computer or result in malicious use of your personal data.

 

Where is the setting to bypass/override this?

Hi @JamesBerge, since you’re receiving the email in your inbox it seems you set up whitelisting properly. So, have you configured your Ms Defender Wenb content settings: https://docs.microsoft.com/en-us/microsoft-365/security/defender-endpoint/web-content-filtering?view=o365-worldwide

Hope this helps.

Thanks.