Notify Malicious

Information

This policy setting determines whether Enhanced Phishing Protection in Microsoft Defender SmartScreen warns your users if they type their work or school password into one of the following malicious scenarios: into a reported phishing site into a Microsoft login URL with an invalid certificate or into an application connecting to either a reported phishing site or a Microsoft login URL with an invalid certificate.

If you enable this policy setting Enhanced Phishing Protection in Microsoft Defender SmartScreen warns your users if they type their work or school password into one of the malicious scenarios described above and encourages them to change their password.

If you disable or dont configure this policy setting Enhanced Phishing Protection in Microsoft Defender SmartScreen will not warn your users if they type their work or school password into one of the malicious scenarios described above.

Solution

Policy Path: Windows Components\Windows Defender SmartScreen\Enhanced Phishing Protection
Policy Setting Name: Notify Malicious

See Also

https://techcommunity.microsoft.com/t5/microsoft-security-baselines/windows-11-version-22h2-security-baseline/ba-p/3632520

Item Details

Category: SYSTEM AND INFORMATION INTEGRITY

References: 800-53|SI-3

Plugin: Windows

Control ID: 554f5886bfe9c016902bd174d7b130131e5f9e4de9dae3de1d383bb90a0bd0e7