Microsoft Teams New Feature Let Users Report Messages Incorrectly Flagged as Security Threats

Microsoft is introducing a new capability in Teams that allows users to report messages they believe were mistakenly flagged as security threats.

The feature represents a significant step toward improving detection accuracy and reducing false positives across organizations worldwide. Completion of availability is expected by the end of November 2025.

The reporting feature enables users to provide direct feedback on messages containing URLs incorrectly identified as malicious.

This user-driven approach creates a valuable feedback mechanism that helps Microsoft refine its threat detection models over time.

Organizations using Microsoft Defender for Office 365 Plan 2 or Microsoft Defender XDR can leverage this capability to strengthen their security operations.

When users report incorrect detections, submissions are stored in the Microsoft Defender portal’s Submissions tab.

Creating a centralized repository for security teams to review and analyze false positive patterns.

This data helps Microsoft improve AI and machine learning models that classify threats, making detection systems gradually more accurate.

The feature will be available across all Microsoft Teams platforms, including Android, Desktop (Windows), iOS, Mac, and Web.

This comprehensive rollout ensures users can report threats regardless of their device preference, improving access and participation in the feedback process.

Microsoft Teams Report Messages Feature

Organizations must complete two critical configuration steps for the feature to function correctly.

First, admins should navigate to the Teams admin center and enable “Report incorrect security detections” under Messaging settings > Messaging safety.

Second, the corresponding setting must be enabled in the Microsoft Defender portal, both settings must be activated simultaneously for full functionality.

For new users, the Microsoft Defender setting is on by default. Existing users have to turn it on themselves to start getting user reports. This feature also adds new data storage at Microsoft.

User submissions regarding incorrectly flagged messages are retained in the Defender portal, and admins can control feature access through Entra ID group membership.

This ensures organizations maintain governance over who can report threats while continuously applying user feedback to improve detection accuracy.

Follow us on Google News, LinkedIn, and X for daily cybersecurity updates. Contact us to feature your stories.

The post Microsoft Teams New Feature Let Users Report Messages Incorrectly Flagged as Security Threats appeared first on Cyber Security News.