Anti-Malware
Configure Exchange Online Protection anti-malware policies. Scan inbound and outbound email for malicious attachments.
Policy Settings
| Setting | Description |
|---|---|
| Common attachments filter | Block known malicious file types |
| Zero-hour auto purge | Remove malware from delivered messages |
| Admin notifications | Alert when malware detected |
| Custom file types | Additional file extensions to block |
Default Blocked File Types
Executable files (.exe, .bat, .cmd, .ps1), script files (.js, .vbs), and other high-risk attachment types are blocked by default.
Actions
- Quarantine — Move message to quarantine (default)
- Reject — Reject the message with NDR
- Delete — Silently delete the message
Safe Attachments Integration
For E5 licenses, Safe Attachments provides additional sandboxing of suspicious attachments beyond the anti-malware filter.
API Reference
GET /api/security/anti-malware/policies— List policiesPUT /api/security/anti-malware/policies/:id— Update policy
Last updated on