This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(211.20000000000002, 64%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EZA%3C/text%3E%3C/svg%3E)
Currently I am facing a predicament with a high volume of emails being flagged as high-confidence phishing under the "Advanced filter" detection technology by our anti-spam policy, a vast majority of which appear to be benign. I have noted the "Advanced phishing threshold" in the anti-phishing policy, which is described as "These thresholds control the sensitivity for applying machine learning models to messages to determine a phishing verdict"
I have not, however, found any concrete evidence that these 2 settings in completely different policies are in any way related. Is there any way to tune the thresholds for the "Advanced filter" detection technology?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(316.8, 90%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAZ%3C/text%3E%3C/svg%3E)
Hello, @Zack A,
If an answer has been helpful, please consider accepting the answer to help increase visibility of this question for other members of the Microsoft Q&A community. If not, please let us know what is still needed in the comments so the question can be answered. Thank you for helping to improve Microsoft Q&A!
Best Wishes,
Alex Zhang
Hello, @Zack A,
Just checking in to see if above information was helpful.
If the issue has been resolved, please mark the helpful replies as answers.
Best Wishes,
Alex Zhang
Hello, @Zack A,
Is there any update on this thread? If the issue has been resolved, please mark the helpful replies as answers, this will make answer searching in the forum easier and be beneficial to other community members as well. Thanks for your understanding.
Best Wishes,
Alex Zhang
Hello, @Zack A,
If an answer has been helpful, please consider accepting the answer to help increase visibility of this question for other members of the Microsoft Q&A community. If not, please let us know what is still needed in the comments so the question can be answered. Thank you for helping to improve Microsoft Q&A!
Best Wishes,
Alex Zhang
If they are flagged as high confidence phishing, the only real option is to submit these to Microsoft as false positives:
Hello, @Zack A,
Welcome to the Microsoft Q&A platform!
Andy David - MVP is right. If emails are being consistently flagged as high-confidence phishing by Microsoft’s filtering systems, submitting these emails as false positives to Microsoft is a crucial step. This helps improve the machine learning models and reduces the likelihood of similar benign emails being flagged in the future.
Here are some points you should be aware of:
You can find more detailed information and the specific steps for reporting false positives in the official documentation provided by Andy David - MVP.
Should you need more help on this, you can feel free to post back.
If the answer is helpful, please click on “Accept answer” as it could help other members of the Microsoft Q&A community who have similar questions and are looking for solutions.
Thank you for your support and understanding.
Best Wishes,
Alex Zhang