Outlook: Rule to display desktop alert

🚨 The Signal: Outlook rules can now trigger desktop alerts for specific emails. This feature, while improving user awareness, introduces a potential vector for social engineering and information disclosure if not managed carefully.

The Impact

End users are affected by new notification options, with a low security risk of increased susceptibility to phishing if alerts are misused.

• End users: May experience improved email prioritization.
• End users: Low risk of increased susceptibility to social engineering via crafted alerts.

The Action

1. Educate users on the risks of trusting unsolicited desktop alerts.
2. Review existing email security awareness training materials to include this new notification vector.

Domain: M365-Apps · Impact: low · Workload: M365 Apps