Safe Links and Safe Attachments in Microsoft 365 Email

Tags Email m365


Microsoft 365 email at UTD includes Advanced Threat Protection (ATP), which defends your inbox from today’s growing and evolving advanced threats. It has robust safeguards like Safe Links, which provides time-of-click protection to help prevent users from opening or accessing malicious links, and Safe Attachments, which protects users from opening malicious email attachments. More information on these services is below. This article applies to Microsoft 365 Email ATPSafe Links/Attachments.


Microsoft 365 Safe Links/Attachments (Microsoft 365 Mail Only)

Safe Links/Attachments provide additional protection from files containing viruses, phishing links, or other malicious content by opening and testing them in a virtual environment before delivery. Messages sent to UTD Microsoft 365 e-mail inboxes with malicious attachments will be blocked by Safe Links/Attachments. Links not on the UTD whitelist will be rewritten to include Safe Links protection.

The way you see the link depends on the message and the client used to send the message:

Plain Text Email

Emails sent in plain text will have the most visible impact. The URL will be longer than the original, and it will be apparent that it was rewritten to include the Safe Links website first.

Email URL comparison box before and after safe links.

HTML/Rich Text Email

HTML email will have a less noticeable impact. The original URL will show in most places, but when accessing mail via the web, you will see the longer Safe Links URL in the browser footer (or elsewhere, depending on the browser)

Browser footer showing longer URL.

Safe Links Warning Pages

When clicking a Safe Links protected link, you will often go directly to the original link. However, at times you may see one of the below warning screens. If you have questions about the legitimacy of a link flagged by Safe Links, please contact the Help Desk. The scan can show in several different ways:

ATP is Scanning the Link

ATP Safe Links are scanning a URL. If you encounter this page, it is best to wait for a few minutes for the scan to complete and then try reloading the page.

ATP Safe Links scan message window.

A URL is in a Suspicious Email Message

The URL is in an email message that seems similar to other email messages that are considered suspicious.

Warning window for a suspicious email.

A URL is in a Message Identified as a Phishing Attempt

The URL is in an email message that has been identified as a phishing attack. As a result, all URLs in the email message are blocked.

Warning window for a potential phishing attack.

The Website has been Blassified as Malicious or Blocked by your Administrator

The URL points to a site that has been identified as malicious, or UTD has specifically blocked that.

Warning window for a malicious website.

Warning winodw for a blocked website.

Print Article


Article ID: 133
Mon 11/22/21 12:41 PM
Mon 6/3/24 9:42 AM

Related Services / Offerings (2)

UT Dallas uses Microsoft Office 365’s Exchange Online Protection (EOP), a cloud-based email filtering service, to scan and quarantine suspected spam, phishing, and malicious messages before they reach your Inbox.
Email at UT Dallas is provided by Microsoft Office 365 and is sometimes called “Exchange Online” email. Office 365 email is protected by Duo & modern authentication.