Let’s face it, with regards to Office 365 security, depending only on the default security offered by Microsoft (EOP / ATP) is to willfully sign up to be a victim of false sense of security . At your convenience, read this post to understand the most dangerous (and interesting) Microsoft 365 attacks, https://lnkd.in/dF5Gg2vv

The Recommended Solution.

Office 365 requires a comprehensive API based security platform that extends to OneDrive, SharePoint and Teams- having visibility and security across Internal-internal, Internet-Internal and External to Internet email communication, see details here https://www.smsam.net/services/office-365-security-assessment/