Skip to main content
All CollectionsGetting Started & How-ToBreachRisk™ for BusinessManage Social Testing
How to Whitelist BreachRisk Social in Microsoft 365 with Email Headers
How to Whitelist BreachRisk Social in Microsoft 365 with Email Headers

Improve delivery rates by securely whitelisting BreachRisk Social emails

Updated yesterday

In this article, you'll learn how to ensure spearphishing emails generated by the BreachRisk Platform get delivered to your employees' Microsoft 365 inboxes to maximize the value of your BreachRisk Social service.

Bypass Spam Filtering & Junk Folder Steps

To bypass BreachRisk Social tests being filtered for spam, BreachBits adds a unique header to each test that you can use to whitelist the tests. To whitelist BreachRisk Social tests in Microsoft 365, follow these steps:

  1. Log into your Microsoft 365 Exchange Admin Center.

  2. Go to Mail Flow > Rules.

  3. Add a new rule by selecting Add a rule > Create a new rule.

  4. On the Set rule conditions page, add a name like "Bypass Spam Filtering for BreachRisk Testing".

  5. In the Apply this rule if field, select The message headers... and includes any of these words.

  6. Select the link for Enter text, then add the header name: x-breachbits

  7. Click Save

  8. Click Enter words and enter the code provided to you by BreachBits for your organization.

  9. Click Add, then Save.

  10. For the Do the following section, choose Modify the message properties and set the spam confidence level (SCL).

  11. In the specify SCL field that appears, choose Bypass spam filtering and click Save.

  12. In the same Do the following section, add another action by clicking the plus icon.

  13. Under And, select Modify the message properties and set a message header.

  14. Select Enter text (first of 2) and enter the following value: X-MS-Exchange-Organization-BypassClutter

  15. Click Save.

  16. On the second Enter text link, enter this value in the message header field: true

  17. Click Save.

  18. Click Save again to save this first rule.

  19. Now, add the second rule by performing steps 3-9 again.

  20. In the same Do the following section, select Modify the message properties and set a message header.

  21. Select Enter text (first of 2) and enter the following value: X-Forefront-Antispam-Report

  22. Click Save.

  23. On the second Enter text link, enter this value in the message header field: SFV:SKI;CAT:NONE;

  24. Click Save.

  25. Click Next.

  26. Keep the default settings on the Set Rule Settings page and select Next.

  27. Click Finish on the Review and finish page.

Did this answer your question?