Identifying Quarantine Messages from Microsoft

Messages identified as "high confidence phishing" threats are held in Microsoft's quarantine. Other messages identified as spam or phishing are delivered to the user's Junk Email folder.

To view messages held in quarantine, visit https://security.microsoft.com/quarantine and log in through Touchstone.

When messages are quarantined, users will be notified by email from quarantine@messaging.microsoft.com. Below is a sample of the email notification from Microsoft.

Quarantined notifications from Microsoft will always contain the following information:

• Sender: The email address of the sender of the quarantined message.
• Subject: The Subject line of the quarantined message.
• Date: The date/time that the message was quarantined in UTC.

Example of a quarantine message from Microsoft:

Depending on why the message was quarantined, the following options will be presented:

• Review message
• Release
• Request release
• Block Sender

Note: Messages identified as "high confidence phishing" cannot be released from quarantine by the end user. Clicking on "Request Release" will open a support request with IS&T, who will review the request and take appropriate action.

More details on each quarantine reason can be found here: Use quarantine notifications to release and report quarantined messages

Additional Resources:

• Spam Filtering Landing Page
• Exchange Online Protection overview
• Anti-spam protection FAQ
• Learn to spot a phishing message

Have Questions or Still Need Help?

• Send email to servicedesk@mit.edu or call the MIT Computing Help Desk at 617.253.1101.