Microsoft is rolling out a new security feature, Malicious URL Protection in Microsoft Teams. Teams scans any link in a message against Microsoft’s threat-intelligence databases. If the link is flagged, a warning appears in place. Senders can edit or delete their message; recipients see the warnings before clicking. This feature works across clients — desktop, web, iOS, Android. Administrators can enable the feature via the Teams Admin Center or via PowerShell. Once generally available, the feature will be enabled by default.

Recipients often click on malicious links without thinking. Warnings at the message level help catch that risk before it becomes a compromise. Many threats arrive via innocuous-looking links. This adds another layer of filtering & education in real time.

Microsoft’s addition of automatic malicious link warnings in Teams marks an important step forward in enterprise communication security. It shifts some risk mitigation from post-click / post-compromise scenarios to pre-click awareness. But as with any security control, its effectiveness depends on being well-configured, paired with user education, and integrated into a broader defense strategy