Threat Defense phishing campaigns may be blocked by the new default security settings in Office 365. (For more information see Microsoft's article Secure by default in Office 365.) Follow these steps to whitelist BrainStorm Phishing Campaigns for your organization.


Note: Additional whitelisting may be required. See the following articles:

Whitelisting BrainStorm Threat Defense

Microsoft Windows Defender Domain Whitelisting


Whitelisting Threat Defense in the Advanced Delivery Policies


1. Log into your Microsoft 365 account and select Admin from the menu on the left. Navigate down the menu to the Admin Center and click under Admin Centers > Security.


2. Under Email & collaboration, click Policies & Rules.


3. On the Policies & rules screen, select Threat Policies.


4. Under Rules, click Advanced Delivery.


5. Click the Phishing Simulation tab. You may either edit an existing configuration or click the add button to create one. This will take you to the Add Third-Party Phishing Simulations screen.


6. On the Add Third-Party Phishing Simulations screen, fill in the following fields:

  1. Domain: the sender domain is the legitimate-looking domain. Add your organization's domain as well as the following: amazon.com, myworkday.com, linkedin.com, microsoft.com, microsolt.com, dhs.gov, securedocuments.com, facebookmail.com.
  2. Sending IP (for BrainStorm, Inc.): 52.228.117.29
  3. Simulation URLs to allow: Enter the root domain of the URLs given to you by BrainStorm to use in your phishing campaign email. Enter domains starting with an “*” as a wildcard followed by a “.” see the following example for formatting: *.ExamplePhishingDomain.com

    Note: The advanced delivery policy only allows 20 entries.