Cloud-based email filtering service that helps protect your organization against unknown malware and viruses by providing robust zero-day protection.
Microsoft Office 365 provides robust email protection against spam, viruses, and malware with Microsoft Exchange Online Protection (EOP). But as hackers around the globe launch increasingly sophisticated attacks, organizations are seeking tools that provide additional protection. We are pleased to offer customers new security capabilities in Office 365 with Exchange Online Advanced Threat Protection (ATP), an email filtering service that provides additional protection against specific types of advanced threats.
Exchange Online Advanced Threat Protection is a cloud-based email filtering service that helps protect your organization against unknown malware and viruses by providing robust zero-day protection. ATP includes features to help safeguard your organization from harmful links in real time. It also has rich reporting and URL trace capabilities that give admins insight into the kind of attacks happening in your organization.
ATP for Exchange Online delivers the following benefits:
Protection against unknown malware and viruses. Today EOP employs robust and layered antivirus protection powered with three different engines against known malware and viruses. ATP extends this protection through a feature called Safe Attachments, which helps protect against unknown malware and viruses and provides better zero-day protection to safeguard your messaging system. All messages and attachments that don’t have a known virus/malware signature are routed to a special hypervisor environment, where a behavior analysis is performed using a variety of machine-learning and analysis techniques to detect malicious intent. If no suspicious activity is detected, the message is released for delivery to the mailbox.
Dynamic Delivery — a Safe Attachments feature that reduces latency of message delivery while an attachment is being inspected for malware.
Real-time, time-of-click protection against malicious URLs. EOP scans each message in transit in Office 365 and provides time of delivery protection, blocking malicious hyperlinks in a message. But attackers sometimes try to hide malicious URLs within seemingly safe links that are redirected to unsafe sites by a forwarding service after the message has been received. The ATP Safe Links feature proactively protects your users if they click such a link. That protection remains every time they click the link, so malicious links are dynamically blocked while good links can be accessed.
Rich reporting and URL trace capabilities. ATP also offers rich reporting and tracking capabilities, so you can gain critical insights into who is getting targeted in your organization and the category of attacks you are facing. Reporting and message tracing allow you to investigate messages that have been blocked due to an unknown virus or malware, while the URL trace capability allows you to track individual malicious links in the messages that have been clicked.
ATP vs Exchange Protection
Exchange Online Protection
Multiple filters + 3 Antivirus engines
Included (as EOP)
Detect malicious attachments even before anti-virus signatures are available
Prevents users from going to malicious websites when they click them in email.
ATP for SharePoint, OneDrive, and Microsoft Teams
Protects your organization when users collaborate and share files, by identifying and blocking malicious files in team sites and document libraries.
Detects attempts to impersonate your users and custom domains. It applies machine learning models and advanced impersonation-detection algorithms to avert phishing attacks.
Informative widgets and views that provide you with intelligence on different cybersecurity issues that might impact your company.
Powerful report that enables your Security Operations team to investigate and respond to threats effectively and efficiently.
Automated investigation and response
Automated investigation processes in response to well-known threats that exist today.
Run realistic attack scenarios in your organization to identify and find vulnerable users before a real attack impacts your bottom line.
Included in Office 365 Enterprise E5 and Microsoft 365 Enterprise E5
Available as ala carte add-on for other plans with Exchange Online Service
Included in any Office 365 plan with Exchange Online service