You may be wondering why a phishing email from a domain that is protected by DMARC ie. p=reject has been able to pass through Office 365.
If you are an Office 365 customer and have received a phishing email that ended up in your spam folder do not be alarmed. This is related to how Office 365 handles emails that arrive from domains protected by DMARC.
Microsoft Office 365 handles quarantine and reject policies the same way. This means that even if the sender’s DMARC policy says that unauthorised emails should be rejected Office 365 quarantines them.
For more information please click on the following button.