Microsoft Purview compliance portal: Data Loss Prevention - Detection of True file type in EXO DLP

🚨 The Signal: Exchange Online DLP now detects true file types, not just extensions. This prevents users from bypassing data loss prevention policies by simply renaming sensitive files, significantly improving data exfiltration protection.

The Impact

Security teams and compliance officers are affected by improved data loss prevention, reducing the risk of sensitive data exfiltration.

• Security teams: Reduced risk of data exfiltration via renamed files.
• Compliance officers: Enhanced assurance that DLP policies are effective.
• Admins: Improved reliability of existing file-type-based DLP rules.
• End users: No direct impact, but sensitive data is better protected.

The Action

1. Review existing Exchange Online DLP policies that use file type conditions.
2. Verify policy effectiveness with test files that have altered extensions.
3. Communicate enhanced data protection capabilities to stakeholders.

Impact: high · Workload: Exchange Online