Some users' legitimate email messages may be marked as phish and quarantined in Exchange Online

Title: Some users' legitimate email messages may be marked as phish and quarantined in Exchange Online

User impact: Users' legitimate email messages may be marked as phish and quarantined in Exchange Online.

Current status: We're continuing to release the quarantine messages for the affected users to fully resolve this problem. In parallel, we're actively working to evaluate additional remediation actions to perform in order to expedite the process of recovery.

Scope of impact: Some users attempting to send or receive Exchange Online email messages may be impacted.

Root cause: The email messages are getting incorrectly marked as phish and quarantined in Exchange Online due to ever-evolving criteria aimed at identifying suspicious email messages, as spam and phishing techniques have become more sophisticated in avoiding detection.

Next update by: Saturday, February 7, 2026, at 2:30 AM UTC

Title: Some users' legitimate email messages are being marked as phish and quarantined in Exchange Online

User impact: Users' legitimate email messages are being marked as phish and quarantined in Exchange Online.

Current status: We expect that the issue is resolved for any new messages as a result of adding the affected URLs to the allow list and we’re continuing the process of working with support to collect the necessary data to release the quarantine messages to fully resolve this problem. We’ll provide an estimate for the completion of this process when available.

Scope of impact: Your organization is affected by this event, and some users attempting to send or receive Exchange Online email messages are impacted.

Root cause: The email messages are getting incorrectly marked as phish and quarantined in Exchange Online due to ever-evolving criteria aimed at identifying suspicious email messages, as spam and phishing techniques have become more sophisticated in avoiding detection.

Next update by: Friday, February 6, 2026, at 10:30 AM UTC

Title: Some users' legitimate email messages are being marked as phish and quarantined in Exchange Online

User impact: Users' legitimate email messages are being marked as phish and quarantined in Exchange Online.

Current status: We’ve added the associated URLs for the affected email messages to the allow list to resolve further impact from occurring. We’re now in the process of releasing the affected quarantined email messages to fully resolve the issue. Additionally, we anticipate that we’ll be able to provide a remediation timeline by the time of our next scheduled communications update.

Scope of impact: Your organization is affected by this event, and some users attempting to send or receive Exchange Online email messages are impacted.

Root cause: The email messages are getting incorrectly marked as phish and quarantined in Exchange Online due to ever-evolving criteria aimed at identifying suspicious email messages, as spam and phishing techniques have become more sophisticated in avoiding detection.

Next update by: Friday, February 6, 2026, at 6:30 AM UTC

Title: Some users' legitimate email messages are being marked as phish and quarantined in Exchange Online

User impact: Users' legitimate email messages are being marked as phish and quarantined in Exchange Online.

Current status: We've determined that the URLs associated with these email messages are incorrectly marked as phish and quarantined in Exchange Online due to ever-evolving criteria aimed at identifying suspicious email messages, as spam and phishing techniques have become more sophisticated in avoiding detection. We've added the associated URLs for these affected email messages to an allow list and are currently monitoring as these actions reflect within our service. After we confirm these URLs have successfully been allowed, we'll conduct final testing with a subset of users in order to validate that this has remediated impact.

Scope of impact: Your organization is affected by this event, and some users attempting to send or receive Exchange Online email messages are impacted.

Root cause: The email messages are getting incorrectly marked as phish and quarantined in Exchange Online due to ever-evolving criteria aimed at identifying suspicious email messages, as spam and phishing techniques have become more sophisticated in avoiding detection.

Next update by: Friday, February 6, 2026, at 2:00 AM UTC

Title: Some users' legitimate email messages are being marked as phish and quarantined in Exchange Online

User impact: Users' legitimate email messages are being marked as phish and quarantined in Exchange Online.

Current status: We're reviewing support provided information to determine our next troubleshooting steps.

Scope of impact: Your organization is affected by this event, and some users attempting to send or receive Exchange Online email messages are impacted.

Next update by: Thursday, February 5, 2026, at 5:30 PM UTC