Every once in a while, Microsoft’s Defender will have a problem, flagging a normal file or URL as a malicious file or link. The problem has now resurfaced, and Microsoft has confirmed that Defender is glitching again, causing legitimate URL links to be flagged as malicious by mistake.
System administrators have received a large number of erroneous email security alerts, and the Microsoft 365 Status official tweet has confirmed the issue, saying that the issue can be tracked on the Microsoft 365 Admin Center portal via “DZ534539”.
These high-risk alert emails say “Potentially malicious URL click detected”. Additionally, administrators may not be able to view alert details using the “View Alert” link in the email.
Microsoft is reviewing service monitoring data to determine the root cause of the issue and develop a solution.
This issue only affects administrators served through the affected infrastructure.