Microsoft Groups will mechanically alert customers once they ship or obtain a personal message containing hyperlinks which are tagged as malicious.
Microsoft will introduce these new warnings for messages containing URLs which have been flagged as spam, phishing, or malware, for all Microsoft Defender for Workplace 365 (MDO) and Microsoft Groups enterprise clients.
The new hyperlink safety function will start rolling out with a public preview for desktop, Android, internet, and iOS customers in September 2025 and is anticipated to achieve basic availability in November 2025, in response to a current Microsoft 365 roadmap entry.
“To assist customers keep protected against malicious content material, we’re introducing message warnings in Microsoft Groups,” the corporate defined in an incident alert revealed within the Microsoft 365 message middle on Wednesday.
“This new function shows a warning banner on messages containing URLs flagged as Spam, Phish, or Malware—whether or not the message is inside or exterior. These warnings improve consumer consciousness and complement present safety protections like Secure Hyperlinks and ZAP.”
Admins can decide in to allow this new function in public preview by utilizing the toggle accessible within the Groups Admin Middle > Messaging settings.
Malicious URL warnings might be displayed instantly on the message and might be enabled by default after the function reaches basic availability, with administration choices accessible through the Groups Admin Middle or PowerShell (with the Groups module).
As Redmond explains, if a minimum of one tenant has the function enabled, the message warnings might be energetic throughout the whole tenant.
Microsoft additionally introduced final month that it is working to enhance safety towards harmful file varieties and malicious URLs in Groups chats and channels.
Moreover, it famous that Groups will permit safety directors to dam incoming communications from an inventory of blocked domains and delete present chat messages from customers in blocked domains by way of the Microsoft Defender portal.
Redmond introduced finally yr’s Enterprise Join convention that Groups had reached over 320 million month-to-month energetic customers throughout 181 markets.
46% of environments had passwords cracked, almost doubling from 25% final yr.
Get the Picus Blue Report 2025 now for a complete have a look at extra findings on prevention, detection, and information exfiltration tendencies.
