M365 Changelog: (Updated) Alerts when end user report a message as junk or not junk

MC525658 – Updated March 16, 2023: Microsoft has updated the content below for clarity. Thank you for your patience.

Applicable to Tenants with Exchange Online Protection, Microsoft Defender for Plan 1 or Plan 2 or Microsoft 365 Defender plan. 

Today, Microsoft only generates alerts when end user reports an email as phish from outlook – “Email reported by user as malware or phish” (alert name)

Starting March 20th, 2023, Microsoft will start generating alerts when end user reports an email as junk or not junk.

1. “Email reported by user as junk” (alert name) whenever end user reports an email –
   1. As junk from any folder within outlook either using the report message add-in or the built-in button within outlook for web.
2. “Email reported by user as not junk” (alert name) whenever end user reports an email –
   1. As not junk from the junk folder within outlook either using the report message add-in or the built-in button within outlook for web.
   2. As not junk from end user quarantine folder.

Note: Regardless of whether user reports from Report-Message or Report Phish Add-ins or Outlook Web Access built-in report button, the alerts will be generated.

This message is associated with Microsoft 365 Roadmap ID 115510

When this will happen:

The change will start rolling out in mid-March 2023 and will complete in late March 2023. 

How this will affect your organization:

You might find these alerts within the alerts tab once the feature has been rolled out.

What you need to do to prepare:

You don’t have to do any work to enable these two new alerts within your tenant as they are on by default.

To manage the alerts, follow the instructions mentioned here.